Description
On behalf of our client, an international bank, Dietzel & Company is looking for aSOC Specialist/ Incident Manager (m/f)
Overview
The role of the SOC Specialist/ Incident Manager is part of the Global Cyber Security Operations Center (SOC) of the bank. The Global Cyber Security Operations Center operates 24x7x365 in a follow-the-sun mode and is responsible for enabling the business of the bank by providing agile, implementable, cost-effective and cutting edge Cyber Security Operational and Incident response services to protect the banks data assets, customers and partners.
Key Responsibilities:
The SOC Specialist/ Incident Manager is the responsible person for the management of security incidents during all stages of the incident management process including an indepth analysis. Therefore the SOC Specialist / Incident Manager will evaluate escalated security alerts from the Senior SOC Analysts, assess the security and business risk associated with a security incident, coordinate containment, eradication, recovery, investigation and response measures and assure an appropriate tracking, documentation, closure and post incident reporting and review of incidents. The SOC Specialist / Incident Manager will lead the communication during and after an incident (management reporting, communication with relevant stakeholders). In addition the SOC Specialist / Incident Manager will provide guidance and training for the SOC Analysts and Senior SOC Analysts, develop and maintain incident response plans and contribute to the enhancement of the incident detection, analysis and response capabilities of the bank.
Experience/Requirements:
• 7-10 years of security experience in a technical role, mainly in the area of Intrusion Detection Systems, Platform and/or Network security
• Strong security background (understanding risk assessment, legal and regulatory requirements, threats, vulnerabilities, security policies etc.)
• Excellent technical understanding of enterprise grade technologies including security devices, network engineering, operating systems, databases and applications and their security settings and configurations
• Ability to read and understand system and network traffic data including security event logs, system logs, application logs, etc.
• Demonstrate prior experience in scripting languages, software vulnerabilities, hacking techniques, exploits, malware, forensics and/or reverse engineering
• Comprehensive knowledge of the threat landscape, adversary tactics, techniques, and procedures (TTP), general attack stages, kill-chain and attack types
• Broad knowledge and proven experience in incident handling and incident response methodologies
• Excellent knowledge of network security technology and various detection, analysis, troubleshooting and configuration control tools (e.g. SIEM, NIDS; DAM, Big Data Analytics, Log file and network traffic analysis, vulnerability scanner)
Required characteristics
• Possess unimpeachable personal and professional integrity
• Excellent verbal and written communication skills (English language)
• Strong analytical and problem-solving skills and conceptual knowledge
• Experience of working in high performing teams and understand the dynamics of teamwork in a international SOC environment
• Ability to maintain analytical, accurate, targeted and highly flexible working mode under pressure
• Ability to take initiative and ownership of incidents from reporting to resolution
• Leadership skills for motivation and developing other SOC roles, managing stakeholders and enhancing and optimizing SOC capabilities
• Aptitude and authority for decision making, communication and execution
Preferred Certifications
• University degree in Computer Science or similar
• Relevant Security certifications (e.g. GCIH, GCIA, ECIH, CEH, OSCP, OSCE, GCFA, CSIH, CISSP) and technical certifications (e.g. CCNP, MSCE) are required
Reference No.: V
Start:? asap
Contract: freelance, fulltime, onsite
Location: Frankfurt
?
Your contact at Dietzel & Company:
Andrea Linskeseder
Fon
E-mail: