Information Security Response Specialist
The position of Information Security Response Specialist is critical in identifying, managing, and mitigating information security incidents.
* Monitor systems to detect potential threats
* Develop mitigation techniques using real-world attack tactics
* Analyze threats and coordinate with relevant teams to address and resolve incidents swiftly
* Conduct post-incident reviews to improve future response efforts and ensure compliance with security policies
This role requires strong analytical and problem-solving skills, as well as the ability to work effectively in a hybrid environment. The successful candidate will have a passion for cybersecurity and a desire to stay up-to-date with the latest technologies and threat vectors.
Key Responsibilities:
* Identify and mitigate cybersecurity risks
* Develop and implement incident response plans
* Coordinate with stakeholders to ensure effective response to incidents
Strong experience with various cybersecurity tools and technologies is required. The ideal candidate will possess a combination of technical expertise and business acumen to drive effective decision-making.
Technical Requirements:
* Experience with Windows 11 and associated management tools
* Experience with CrowdStrike for SIEM and Endpoint Privilege Manager
* Experience with BeyondTrust PAM (Privileged Access Management)
* Python and PowerShell programming skills
Environment:
* Endpoint Privilege Manager (EPM) tools
* Privileged Access Management (PAM) tools
* SIEM tools
* IDS/IPS
* Forensic analysis tools
* Incident response platforms