Job Description
• Creating and maintaining an incident response plan (IRP) • Investigating and analyzing incidents • Managing internal communications and updates during or immediately after incidents • Communicating with employees, shareholders, customers, and the press about incidents as needed • Remediating incidents • Recommending technology, policy, governance, and training changes after security incidents • Identify affected critical systems • Respond to all referred security incidents or suspected incidents involving The Company’s computer system, networks and data resources. • Establish a 24 hour, 7 day a week hotline to report security incidents • Convene within 3 hours of notification of a reported computer security incident. • Establish classifications of security incidents requiring an investigation • Investigate and report all evidence to management • Assess damage and scope of intrusion • Control and contain intrusion • Maintain a chain of custody of all evidence according to established procedures. • Notify users of correct procedures to ensure that evidence will be protected.
Requirements
- Familiarity with security concepts for security response - Work experience related to the event response team - Ability to solve problems in critical situations - Ability to report - Familiarity with the concepts of network security (passing the CEH course is a priority.) Ability to detect vulnerabilities and provide security solutions in Windows, Linux and Threat Hunting operating systems - Ability to detect fraud and forgery - Familiar with forensic topics - Sufficient mastery of the Linux operating system - CHFI degree
Employment Type
- Full Time
Job Category
Seniority
Details
Employment type
- Full Time
Job Category
Educations
Seniority
