Contractor | IT Outsourcing & Consulting2 Months Ago
Save
Cynet Systems is Hiring a Remote Incident Response Engineer - Remote / Telecommute
Job Description:
Responsibilities:
Perform analysis on cybersecurity alerts in both On-Premises or Cloud environments
Produce detailed incident reports and security recommendations.
Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment.
Manage containment and remediation efforts of affected assets, IOCs, and TTPs
Hold stakeholders accountable for remediation actions.
Integrate and collaborate with other subject matter experts throughout the organization.
Influence the creation and/or adoption of new standards and procedures.
Identify deficiencies in processes and tools, recommend security controls and/or corrective actions for mitigating technical and business risk.
Contribute to Lessons Learned Meetings.
Monitor security intake technologies for reports of security incidents Qualifications
4 years of IT Security or Cyber Security experience in any of the following areas:
Incident Response o Email Security of Data Protection\Governance Cybersecurity threat detection, monitoring and reporting of Cyber Intelligence and Threat Hunting o Vulnerability Management.
Experience analyzing attack vectors, current threats, and security remediation strategies.
Experience with SIEM technologies, EDR technologies, and/or Asset isolation tools o SIEM: Client, Sentinel, etc o EDR: Microsoft Defender, Tanium, TrendMicro VisonOne, etc.
Networking experience (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture.
High-level familiarity of global privacy regulations (NY Cyber, GDPR, LGPD, CERT-In)
Experience in public cloud platforms, including Azure, AWS, and Google Cloud Platform Assets.
Undergraduate degree or equivalent experience.
Spanish Language skills.
PowerShell, KQL, or Python scripting experience.
CISSP, CISA, GCIH, CEH, CHFI, CCSP, SEC , Net , A .
Understanding of NIST 800-61, Cyber Kill Chain, and MITRE Telecommunication&CK framework.