Job Description
Are you looking to join a company at the forefront of innovation and transformation? Look no further than Talan!
We are seeking a talented CSIRT Consultant to join our team and work on IT projects.
Role and Responsibilities
- Incident Detection and Response: Identify, detect, and respond to various security incidents, including but not limited to DoS attacks, malware, phishing, and web attacks. Take immediate action to mitigate and resolve security incidents as they occur.
- Security Incident Management: Lead and drive end-to-end security incident response and resolution activities. Coordinate with IT Operations and other teams to ensure timely deployment of preventive and detective actions in response to security threats and intelligence alerts.
- Forensics and Investigation: Support and perform forensic investigations to respond to security incidents. Prepare detailed incident post-mortem reports, including root cause analysis, remediation steps, and lessons learned.
- Threat Intelligence and Coordination: Respond to security threats and intelligence alerts from Group CERT, regional regulators, and authorized threat intelligence groups. Manage the coordination, communication, and deployment of action plans for threat advisories and lessons learned from security incidents.
- Policy and Playbook Development: Develop, update, and periodically review the Incident Response Plan (IRP) and playbooks to ensure relevance and effectiveness. Maintain up-to-date information on all stakeholders involved in incident response.
- Collaboration and Support: Collaborate with CSIRT teams across different geographies on security matters. Act as a backup to manage security incidents and other security activities as needed.
- Security Review and Vulnerability Management: Conduct periodic reviews of network (switches, routers, firewalls, IPS, etc.) and system (Windows, Linux, etc.) security measures to support vulnerability management. Ensure the vulnerability remediation process is followed and meets the expected level of performance.
- Compliance and Training: Complete all mandatory training to maintain and enhance competence. Comply with all legal, regulatory, and internal compliance requirements, including financial security and fraud prevention measures.
- Incident Exercises and Preparedness: Organize and conduct annual "table-top incidents" exercises with management to test the effectiveness of incident response strategies.
- Severe Incident Coordination: In the event of a severe security incident, coordinate investigation, mitigation, and remediation operations with IT operations and application teams.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Prior experience in a security operations or incident response role.
- Strong knowledge of security threats, vulnerabilities, and attack vectors.
- Experience with security technologies, including firewalls, intrusion detection systems, antivirus software, and SIEM (Security Information and Event Management) tools.
- Proven experience in conducting forensic investigations and preparing incident reports.
- Knowledge of regulatory requirements related to cybersecurity and data protection.
- Strong analytical and problem-solving skills with attention to detail.
- Excellent communication and coordination skills, with the ability to work effectively under pressure.
- Relevant certifications such as CISSP, CISM, GIAC, CEH, or equivalent are preferred.
Preferred Skills:
- Experience in coordinating with external regulatory bodies and threat intelligence groups.
- Familiarity with security frameworks such as NIST, ISO 27001, and CIS Controls.
- Knowledge of scripting and automation tools for incident response (Python, PowerShell, etc.).
Company’s Benefits:
- The salary range for this role is US$70,000 - US$140,000.
- 401(k) retirement plan with company matching.
- 15 days of paid vacation per year at hire and up to 27 according to seniority (annual untaken vacation days are cashed out).
- 8 paid holidays + 5 sick days + 2 personal days per year.
- Company health, dental, and vision insurance plans + FSA.
- Voluntary STD and LTD.
- Commuter/transit benefits.
All your information will be kept confidential according to EEO guidelines.
#J-18808-Ljbffr