Security Incident Response Expert (m/f)

Description

• Working in a global (virtual) security incident response team
• Analyse, handle and document security alert / incidents in a comprehensive, risk driven manner
• Assess technical, operational, business and regulatory impact
• Coordinate counteractions with other security functions and subject matter experts
• Keep management and relevant parties up to date with to the point communication
• Ensure comprehensive incident documentation
• Continuously improve detection capabilities and operational procedures
• Build and share relevant information and knowledge with global team
• Support security projects to onboard systems and solutions into security event monitoring (transitions)
• Prepare and check functional and operational reports
• Keep training and maintain skills at the highest level

• Intensive security experience in an IT security domain in particular host/network intrusion, forensics, vulnerability scanning / penetration testing, malware analysis
• Broad experience in a global security incident response team
• Experience in managing global projects
• Sound understanding of SIEM / CERT (CSIRT) operations
• Good understanding of and exposure to security tools such as firewalls, IDS/IPS, A/V, anti-spam, proxies
• Solid experience working with internet and network technologies and its protocols, specifically TCP/IP, UDP, SMTP, HTTP, HTTPS, SMTP, SSL
• Fundamentals of Application Security - Strengths and Weaknesses
• Experience in Security Alert analysis, handling and documentation
• Experience in troubleshooting (technical analysis, documentation and remediation)
• Experience in Service Definition, Service Level Management, KPI tracking
• Excellent verbal and written English skills
• Programming experience and database know-how would be a plus
• University degree in Computer Science or similar
• CISSP certification plus one additional security certification such as GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Information Security Professional (GISP), Certified Computer Forensics Examiner (CCFE)
• ITIL Foundation certification