Cyber Security Incident Response Expert

PwC

Praha
Trvalý pracovní poměr
Plný úvazek

Před 22 dny

Job Description & SummaryAbout the TeamFor us, SOC is not just logging or monitoring but it is a comprehensive threat management tool of which logging is only one component. Our understanding of SOC includes Monitoring and Incident Detection, Investigating Incidents and their remediation and also support services such as Vulnerability Management and Threat Intelligence, technologically and from the perspective of terms of all related processes.We deliver service to client which consists of analysis of events in Security Information and Event Management (SIEM) system and response to security incidents and we provide additional expertise (Vulnerability management, … ) when demanded.About your manageris Head of Cyber Operations with over 8 years of experience with cyber security and consulting, building relationships across various teams on local and international level. His experience is coming from multiple international corporations where we are running SOCs, doing SOC transformations, assessments and incident response activities. He considers himself as a self-driven person with a high focus on technical capability and building opportunities based on trust with all stakeholders. He is focused on finding the evil in the enterprise networks and automation. In his free time he likes travelling, spending time with friends, good food and watching movies.Job description & summaryWe look for the passionate and curious individual, who wants to grow his/her cyber security professional career in the field of detecting potential security incidents, analyzing data in search of evidence, respond to breaches and hunt for adversaries.Incident Response Expert will represent the team within the client's operations as Level 3 analyst and Subject Matter Expert (SME) when it comes to security incident detection, analysis and investigation and will drive the consequent incident response towards successful containment & eradication. Within the role can be expected balanced ratio of long term client engagement in the operations mode with the ad-hoc project based engagements focused on pure incident response, threat hunting & breach discovery.This is a senior role and its additional responsibilities may include continuous improvement of the Threat Management team tradecraft and capabilities as well as sharing knowledge, mentoring and training junior colleagues.With clients coming from the Czech Republic, Central & Eastern Europe as well as from the wider EMEA region, you will have the opportunity to grow your technical expertise or consulting skills (or both) of a lifetime.Requirement of the role4+ years of relevant professional experience.Consistent, reliable and professional personality, capable of working within international & diverse teams.Previous SIEM/SOC/CERT/CSIRT/DFIR (or equivalent) experience highly desired.In depth understanding of varied attack vectors and adversaries’ Tactics, Techniques & Procedures (TTPs) up to the level of Advanced Persistent Threats (APTs).Excellent understanding of one or more Operating Systems (Linux, Windows, …).Ability to work under pressure during major security incident response situations as well as attention to detail during post-breach investigation.Nice to haveHands-on skills within the information security field, with special focus towards Security.Information and Event Management (SIEM) tools like Splunk, QRadar, Arcsight or ELK.Working knowledge of the Endpoint Detection & Response (EDR) tools.Experience with Cyber Threat Intelligence integration into SOC environment & operation.Previous consulting experience in the global enterprise environment.Deeper experience in any (or more) of the following areas:
- Security/Network Analysis
- Incident Response
- Cyber Threat Intelligence
- Threat and Vulnerability Management
- Digital Forensics
- SIEM implementationIndustry recognized certifications either in the area of general information security or focused.Towards Threat Management can be plus.Benefits and FunConcentrated experience and rapid career growth. It may sound like a platitude, but it really is.Paid time off 20 + 5 days, 3 wellbeing days and 2 extra days off from the company at the end of the year.High-end Ultrabook and iPhone with unlimited data.Flexible working hours.Work from our offices in Prague, Brno, or Ostrava, or choose to work from home if that is your preferred option.Benefit program with 45.000 points that you can use for holidays, education, food vouchers, sports (Multisport), health... Simply on what you enjoy.Support for your education and development: business and digital trainings, technical certifications (e.g. SANS) or whatever that makes sense and it's related to your job etc..Possibility of Secondments - opportunity to work at a foreign PwC office in the future - for example in the USA, Canada etc..Extra-work activities and Away Days (team building, ski weekend, etc..)Regular feedback on your work, also consultation with a coach with whom you can address your further development and career direction.PwC is the largest audit team in the Czech Republic, law, tax, consulting and technology, data or forensic teams. Find out how easy it is to combine this knowledge when you're in the right place. With us, you will get the opportunity to see how business is done in large companies. We are part of an international network of companies with more than 364,000 colleagues in 151 countries. At PwC, we create an inclusive work environment where everyone can be themselves and find their place and opportunity to develop.Are you interested in our offer? Let us know about yourself and we will discuss more details together! /#LI-EK1

PwC

Odpovědět