Cyber Incident Responder

at  b2bnetwork

REQUIREMENTS DESCRIPTION:

• Provision of 24/7 Cyber Security Incident Response (TRIAGE,Contain, Eradicate, Recover) activities, during normal workinghours and on-call duties, including weekends and holidays;
• Deliver of technical co-ordination, support and assistance inrespect of Cyber Security Incident Response to NATO CISOperating Authorities or other similar bodies as directed, includingbut not limited to, NATO Nations, Partner Nations, non-Governmental Organisations and Industry partners
• Lead, be a member of, or support a Cyber Security ResponseTeam designated to provide Cyber Security Incident Reponsehappening on one or mutiple physical locations, including NATOAlliance Operations and Missions.
• Build, manage the lifecycle of, and maintain the taxonomyrelated to the Branch’s information.
• Manage the content of the different information portals with theagreed taxonomy.
• Design, create and distribute a variety of reports, briefings anddashboards, to different type of audience (Business owners,Operational community, IT Service Management, Cyber Securitycommunity)
• Maintain a network of cyber security personnel across andbeyond the NATO Enterprise to facilitate communication andcoordination of urgent actions when the need arises.
• Research to identify, document and implement improvements tothe Incident Response (TRIAGE, Contain, Eradicate, Recover)activities in order to enhance and optimise current best practice tomeet new and developing threats
• Production of Standard Operating Procedures covering allaspects of Incident Response (TRIAGE, Contain, Eradicate,Recover) activities
• Performs other duties as may be required.

SKILL, KNOWLEDGE & EXPERIENCE:

• Excellent communications skills and reporting experience withcapacity to communicate to different types of audience (seniorexecutive, middle management, technical and non-technical).
• Comprehensive understanding of the principles of Computer andCommunication Security, networking, and the vulnerabilities ofmodern operating systems and applications acquired through ablend of academic or professional training coupled with practicalprofessional experience
• Recent practical, hands-on experience of Intrusion Detectionand Incident Response (TRIAGE, Contain, Eradicate, Recover) inan enterprise-level Computer Emergency Response Team, ideallymaking use of the MITRE ATT&CK framework
• At least 3 years experience in Information and KnowledgeManagement, ideally in the field of Cyber Security
• Experience in interfacing with IT Service Management.Desirable
• Hold a University degree in Cyber Security or IT Security-relateddiscipline or Information Management.Hold relevant certifications such as Certified InformationSystems Security Professional (CISSP), GCIH or GIAC/GCIMSecurity
• Hold a professional certification on IT Service Management.
• In-depth knowledge of potential security event sources and theirinterpretation and analysis in support of the incident detection andhandling processes
• Practical hands-on experience in System and Networkadministration to include Network (TCP/IP) Engineering

Please refer the Job description for details