JOB SUMMARY:
Reporting to the VP of Functional Excellence, this role works with the Technology teams and other key stakeholders to ensure the proper approach and response to cybersecurity threats and attacks. They advise and act to protect the company’s hardware, software, networks, and data from threats. The Incident Response Engineer will fully understand the IT infrastructure, monitor, identify and address vulnerabilities that create potential risks to our information security and that of our customers. This position will plan, implement, upgrade, and monitor security measures for the protection of systems and information.
QUALIFICATIONS AND REQUIREMENTS:
- Bachelor’s degree (B.A.) in Information Security or related field.
- Proven experience which includes 2+ years of hands-on incident response experience, virtual threat tracking experience and exploit/hack tool research or development experience or 5+ years of combined experience and education.
- EC-Council Certified Incident Handler (ECIH), GIAC Certified Forensic Analyst (GCFA), and CompTIA Cybersecurity Analyst (CySA+) certifications are a plus.
- Experience Administering End Point Protection, O365 Defender, Azure Information Protection, and DLP solutions.
- A deep understanding of and experience with the Cybersecurity Incident Response lifecycle.
- Experience designing, implementing, and enhancing engineering security risk management processes with alignment to policies, standards, procedures, and frameworks.
- Experience responding to requests from internal and external auditors, and/or leading audit activities.
- Experience working with networking equipment including but not limited to, routers, switches, and firewalls.
- Experience conducting Security Gap Assessments, for protection planning and threat modelling.
- Excellent Communication, Troubleshooting, Problem Solving, Comprehension, Research and Writing Skills.
- Ability to work with customers internal and external while promoting a positive image of the organization.
OTHER QUALIFICATIONS & DESIRED COMPETENCIES:
- Demonstrates competency in providing cybersecurity operational services to the organization.
- Consistently demonstrates teamwork, collaboration and puts the success of the team above one’s own interests.
- Receives minimal instruction on day-to-day work and general instructions on new assignments.
- Demonstrates competency in selecting methods and techniques for obtaining solutions.
- Able to succeed in a fast-paced, deadline driven environment, where small teams share a broad variety of duties.
- Displays strong initiative and drive to accomplish goals and meet company objectives.
- Takes ownership and responsibility for current and past work products.
- Is committed to learning from mistakes and driven to improve and enhance performance of oneself and others.
- Familiarity with privacy laws, data security regulations, and frameworks, such as SOC2, NIST, COBIT, ISO 27001.
- Proficiency with Security Protocols; Firewalls, Routers, Anti-Virus, Endpoint Protection.
- Proficiency with Office 365 business line of applications.
- Proficiency with Intune, Azure, O365 Administration is a plus.
- Able to identify and document specific security issues, propose resolution options, and interpret matters from all involved departments.
BACKGROUND CHECK REQUIREMENTS:
- Must pass Live Scan (Criminal Background Check via fingerprinting).
- Provide and maintain a clear TB test throughout employment.