Lead Incident Response Analyst
-
Location
New York
-
Sector:
-
Job type:
-
Salary:
130-160k base
-
Contact:
Ross Gisondi
-
Contact email:
r.gisondi@hamlynwilliams.com
-
Salary high:
0
-
Salary low:
0
-
Job ref:
REF 852
-
Published:
3 months ago
-
Expiry date:
2019-02-21
-
Startdate:
ASAP
Responsibilities
- Lead proactive threat hunts and research for malicious attacks and security incidents
- Conduct advanced host/network forensic investigations
- Utilize threat intel to build IOCs into monitoring tools, and tool integration
- TCP/IP network skills for network analysis in diagnosis of potential cyber threats and anomalies
- Automate tasks for network and analysis
- Documentation for automation and code efforts and translate for non-programmers
- Trend Analysis
- Threat Detection and Response, and mitigation effort for any active or potential cyber threats
- Aid in Automation for these processes
- Develop the Standard Operation Procedures and ensure continuous improvements that meet industry standards, emerging threats and potential attacks
- Lead and manage projects such as life cycle and new product integration
Qualifications/Skills
- Over 6 years of experience as a senior level SOC Analyst handling incidents, threat detection, case management
- Leading incident response
- Exposure to threat intelligence and sharing in cyber communities
- Programming in one of the following; Python (preferred), Bash, Shell Script, Powershell
- Knowledge of event management and disaster recovery
- Network and host-based forensics
- Knowledge of Intrusion detection/prevention systems
- Log collection and analysis
- TCP/IP, network ports and protocols
- Pcap analysis