Security Incident Response Expert (m/f)

REFERENZNUMMER:

243202/9

IHRE AUFGABEN:

-Working in a global (virtual) security incident response team
-Analyse, handle and document security alert / incidents in a comprehensive, risk driven manner
-Assess technical, operational, business and regulatory impact
-Coordinate counteractions with other security functions and subject matter experts
-Keep management and relevant parties up to date with to the point communication
-Ensure comprehensive incident documentation
-Continuously improve detection capabilities and operational procedures
-Build and share relevant information and knowledge with global team
-Support security projects to onboard systems and solutions into security event monitoring (transitions)
-Prepare and check functional and operational reports
-Keep training and maintain skills at the highest level

IHRE QUALIFIKATIONEN:

-Intensive security experience in an IT security domain in particular host/network intrusion, forensics, vulnerability scanning / penetration testing, malware analysis
-Broad experience in a global security incident response team
-Experience in managing global projects
-Sound understanding of SIEM / CERT (CSIRT) operations
-Good understanding of and exposure to security tools such as firewalls, IDS/IPS, A/V, anti-spam, proxies
-Solid experience working with internet and network technologies and its protocols, specifically TCP/IP, UDP, SMTP, HTTP, HTTPS, SMTP, SSL
-Fundamentals of Application Security - Strengths and Weaknesses
-Experience in Security Alert analysis, handling and documentation
-Experience in troubleshooting (technical analysis, documentation and remediation)
-Experience in Service Definition, Service Level Management, KPI tracking
-Excellent verbal and written English skills
-Programming experience and database know-how would be a plus
-University degree in Computer Science or similar
-CISSP certification plus one additional security certification such as GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Information Security Professional (GISP), Certified Computer Forensics Examiner (CCFE)
-ITIL Foundation certification

WEITERE QUALIFIKATIONEN:

Business analyst, Administrator, IT service manager