SA 417 Intermediate Security Analyst with hands-on experience in Cybersecurity, InfoSec, Security Engineering, Network Engineering with emphasis on Incident Response, within the public sector (REMOTE)
SA 417 our client is seeking a Intermediate Security Analyst with hands-on experience in Cybersecurity, InfoSec, Security Engineering, Network Engineering with emphasis on Incident Response, within the public sector (REMOTE)
Must Haves:
- 5+ years of hands-on experience in Cybersecurity,
- 5+ years of experience with Incident Response
- 5+ years of experience with Information Security (InfoSec)
- 5+ years of experience with Network Security Engineering
- Familiarity with security frameworks such as NIST, PCI and CIS.
- Experience conducting structured workshops and interviews with stakeholders to identify relevant requirements.
- High proficiency in creating and presenting incident summary reports.
- A university degree in a related discipline (Computer Science or Computer Engineering) or an equivalent combination of experience and training.
- One standard industry certification, such as GSEC, CISA, CISM, CISSP, CSCS, or CEH or equivalent certifications, would be an asset.
Responsibilities:
Engage with stakeholders to determine future requirements for the next generation security incident response service.
• Define and create an Information Security Incident Management plan and processes.
Build procedure documents for incidents handling including playbook(s) and runbooks such as but not limited to:
o Credential Compromise
o Distributed Denial of Service
o Malware o Malicious Email
o Ransomware
• Review and update current runbooks to include stakeholder communication, roles and responsibilities and other required data.
• Conduct tabletop(s) exercises to test the readiness of security incident response function.