Cyber Security Incident Responder
Cyber Security Incident Responder
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Overview
We are looking for an enthusiastic and experienced Cyber Security Incident Responder (IR) to join our dynamic and growing team. The role holder will play a critical role in maintaining the security and resilience of Elements digital infrastructure by effectively managing and progressing cyber incidents. This is a unique opportunity to be a founding key member of Cyber Defence. You will work closely with key stakeholders at all levels to develop what you see as a great 24/7 operational cyber defence capability. Whilst the role is not solely technical we encourage applications from those with experience in Digital Forensics and Incident Response (DFIR).
This position requires on call and overtime if there are very serious cyber attacks. Location in the UK is flexible.
Responsibilities
- Help build Elements IR capability. Implement best practice in line with NIST SANS and other industry frameworks
- Govern and coordinate cyber incidents. Act as the lead incident manager and technical authority for Cyber Defence. Conduct thorough investigations to reduce risk. Determine the root cause impact and identify remediation actions
- Collaborate with crossfunctional teams including IT Privacy and Legal and senior stakeholders. Prepare and present written and verbal incident status reports to ensure the business is kept up to date
- Conduct postincident reviews and analysis to identify areas for improvement and help drive continuous improvement
- Perform digital forensics on computer/network artefacts to assess the risk and impact of an incident. Perform malware analysis
- Work closely with the Senior Manager Incident Response to Input into the development of cyber defence metrics and Key Performance Indicators (KPI)
- Stay abreast of the latest cyber threats attack vectors and security technologies to continuously improve the organizations incident response capabilities
- Develop and maintain strong relationships with external stakeholders such as law enforcement agencies cybersecurity vendors and industry peers to facilitate information sharing and collaborative incident response efforts
Skills / Qualifications
- A minimum of five years experience working in cyber security. Technical experience as a Cyber Incident Responder e.g. Digital Forensics Incident Response (DFIR). Experience in managing complex cyber incidents would be great
- Experience of in working within a complex highly federated organisation. A comprehensive understanding of cyber defence operations in both the public and private sectors
- A Bachelor degree in computer science information technology or a related field is desirable but not essential as are other relevant certifications (e.g. CISSP CISM GIAC)
- Attention to detail strong analytical skills and efficient problem solving. The ability to think critically and make sound decisions in highpressure situations
- Cultural sensitivity and social flexibility in a global corporate environment
- Experience in proactive communication to and direct interaction with senior staff. The ability to convey complex information to a nontechnical audience
- A highly selfmotivated individual with positive mindset and cando attitude. A strong believer of security as an enabler to support business growth
- Position requires on call and overtime if there are very serious cyber attacks
- Knowledge of SIEM tooling including experience in writing and developing advanced hunting queries.
Experience Needed to Fulfil the Role
- Comprehensive experience of managing serious Cyber Incidents as an Digital forensic incident responder.
- Experience in operating successfully within a large complex/federated enterprise environment.
- Demonstrable understanding of security monitoring intrusion detection prevention and control systems including firewalls antivirus web proxies.
- Technical knowledge and practical experience in any associated area e.g. networks malware analysis digital forensics etc.
- Attention to detail strong analytical skills and efficient problem solving.
- Cultural sensitivity and social flexibility in a global corporate environment.
- Experience and confidence in being able to communicate effectively with senior stakeholders.
#LIDJ1
Diversity Statement
At Element we always take pride in putting our people first. We are an equal opportunity employer that recognizes diversity and inclusion as fundamental to our Vision of becoming the worlds most trusted testing partner.
All suitably qualified candidates will receive consideration for employment on the basis of objective work related criteria and without regard for the following: age disability ethnic origin gender marital status race religion responsibility of dependents sexual orientation or gender identity or other characteristics in accordance with the applicable governing laws or other characteristics in accordance with the applicable governing laws.
Employment Type
Unclear
