CISSP Jobs - L3 Cybersecurity Analyst, 16282

at Kforce Technology
Location Round Rock, TX
Date Posted July 21, 2020
Category Default
Job Type Contractor

Description

RESPONSIBILITIES:

Kforce Inc. is immediately adding a full-time L3 Incident Response Analyst to remotely support our enterprise technology client within their Security & Resiliency team based in Bedford, MA.

Summary:
This role is responsible for investigating and reporting of major security incidents supporting all business units and mergers & acquisitions. This role requires experience in all phases of Cybersecurity Incident Response including preparation, analysis, notification, response, recovery, and post-mortem

Key Responsibilities:

  • The Cybersecurity Intelligence & Response Team (CSIRT) under Security & Resiliency team is responsible for coordinating with IT, Legal, Human Resources, and other appropriate business units to gather incident details, assess impact, and coordinate response
  • This role interacts with all levels of the organization, particularly within the Global IT organization and is viewed as a subject matter expert on Incident Response
  • The focus of the role is primarily responding to security incidents, managing and consistently maturing the security incident response process to meet the needs of the organization, and building the Global Incident Response Team's technical investigative capabilities (process & technology)
  • Serve as one of the four global escalation points for cybersecurity incidents not resolved at the L1/L2 levels
  • Perform technical cybersecurity investigations on security incidents, root cause analysis, recommend and mitigate the effects caused by an incident
  • Provide technical Incident Response guidance to the L1 and L2 Incident Response Analysts
  • Mature the Security Incident Response process to ensure it meets the needs of the global business and is adhered to
  • Assist with the creation and refinement of Incident Response run books
  • Participate in shift handoff activities
  • Interface with other CSIRT teams to continuously improve the Incident Response function
Drop files here browse files ...