IMR Analyst

at  Capgemini

YOUR SKILLS AND EXPERIENCE

• Significant and proven experience of dealing with cybersecurity incidents, incident risk management, and associated response measures
• Excellent communication skills (both spoken and written English), including the ability to write comprehensive incident reports and clearly articulate technical messages to a variety of audiences
• Experience in technical investigation areas such as digital forensics, threat hunting, and enterprise scale security incident response
• Experience in the use of SOC monitoring and intrusion detection systems (such as Falcon CrowdStrike, Splunk ES, and VirusTotal Enterprise), management and responding to and the tuning of alerts
• A broad understanding of the cyber security threat landscape

YOUR ROLE

• Managing and coordinating cybersecurity incidents, including overseeing all aspects of the incident management and response process, and driving the incident to conclusion and lessons learned
• Handling escalations from L1 & L2 SOC analysts and CISO teams, including complex and specialist investigations
• Issuing status updates and other communications, providing key stakeholder management, including interpretation and presentation of technical topics to executives, and writing comprehensive incident reports for a variety of technical and non-technical audiences
• Performing technical investigation and response activities using monitoring tooling including SIEM, HIPS/NIPS, AV/EDR, and UBEA
• Providing threat and vulnerability analysis, as well as security advisory services to users and CISO teams
• Providing oversight for specialist investigation functions including forensic examinations and investigative interviews, assisting where possible and ensuring they are undertaken in-line with relevant legislation and standards