Description
We are looking for a
Security Incident Response Expert (m/f)
Reference: -en
Start: asap
Duration: 6 MM++
Place: in Hesse
Branch: Grossbanken
Your tasks:
- Working in a global (virtual) security incident response team
- Analyse, handle and document security alert / incidents in a comprehensive, risk driven manner
- Assess technical, operational, business and regulatory impact
- Coordinate counteractions with other security functions and subject matter experts
- Keep management and relevant parties up to date with to the point communication
- Ensure comprehensive incident documentation
- Continuously improve detection capabilities and operational procedures
- Build and share relevant information and knowledge with global team
- Support security projects to onboard systems and solutions into security event monitoring (transitions)
- Prepare and check functional and operational reports
- Keep training and maintain skills at the highest level
Your qualifications
- Intensive security experience in an IT security domain in particular host/network intrusion, forensics, vulnerability scanning / penetration testing, malware analysis
- Broad experience in a global security incident response team
- Experience in managing global projects
- Sound understanding of SIEM / CERT (CSIRT) operations
- Good understanding of and exposure to security tools such as firewalls, IDS/IPS, A/V, anti-spam, proxies
- Solid experience working with internet and network technologies and its protocols, specifically TCP/IP, UDP, SMTP, HTTP, HTTPS, SMTP, SSL
- Fundamentals of Application Security - Strengths and Weaknesses
- Experience in Security Alert analysis, handling and documentation
- Experience in troubleshooting (technical analysis, documentation and remediation)
- Experience in Service Definition, Service Level Management, KPI tracking
- Excellent verbal and written English skills
- Programming experience and database know-how would be a plus
- University degree in Computer Science or similar
- CISSP certification plus one additional security certification such as GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Information Security Professional (GISP), Certified Computer Forensics Examiner (CCFE)
- ITIL Foundation certification
Skills:
- Business analyst
- Administrator
- IT service manager