Vacancy expired!
Location: Austin, TX Description: Our client is seeking a Cybersecurity Incident Manager to join their growing detect and response cyber security team.
This job will have the following responsibilities:- Lead the response to security incidents in conjunction with the company's incident response plan and playbooks.
- Facilitate incident briefing calls, the direction of required response tasks, documentation & distribution of incident communications.
- Coordinate with internal stakeholders, contracted security providers, and/or law enforcement on larger investigations.
- Support SOC management in planning for security incidents, ensuring that capabilities and procedures are regularly tested to ensure they meet requirements.
- Maintain and improve the post-incident review process, including root cause analysis and control improvements.
- Contribute to developing policies, standards, and guidelines for incident response.
- Assist, where required, in Enterprise Security transformational change activity.
- Maintain knowledge of current threats, capable of replicating and protecting against the techniques used.
- Experience Incident Handler with 6+ years of
- Experience responding to incidents such as Malware, phishing, and data loss
- Strong understanding of the incident lifecycle
- Working experience with Cisco or Microsoft security tools
- Solid grasp of SOC and Incident Response (IR) processes and experience with relevant tools (SIEM, UEBA, Response tooling, IR management)
- SANS, CISSP, GCIH, GIAC, GCFE, GREM SANS Certifications, EnCE, Cyber Incident Response (CSIRT/CERT) (Desirable)