Incident Response Manager

This job has now expired please search on the home page to find live IT Jobs.

About the role:

An exciting and unique opportunity has arisen for an Incident Response Manager, to join a global leading insurance company in London, to work as part of the Cyber Defence Team responsible for the management of the team of 7, within their CIRT function.

As a successful Incident Response Manager, you will be looking into continuously improve the program and function of Security and assist in its development but also participating as an escalation point of contact in the On-Call rotation, to ensure that CIRT can respond to priority incidents.

Key Responsibilities:

* Identifying a variety of threats through in-house tooling, created by Cyber Teams within the company.

* Consuming and exploiting intelligence produced by the company.

* Providing tactical and strategic recommendations for preventative controls to cyber security teams, based upon incident response findings and trends in realised threat activity.

* Providing technical and strategic finding to stakeholders also with different recommendations on posture improvements.

* Performs threat hunting activities, to discover undetected threats while creating new detection logic to improve base operations within the company.

Key Skills & Requirements:

* Extensive knowledge of CIRT and SOC procedures.

* Experience managing an advanced CIRT function is essential.

* The ability to analyse event and systems logs, perform forensic analysis, analyse malware, and other incident response related data, as needed.

* Familiarity with intrusion detection systems and tools.

* Knowledge of attack vectors, threat tactics and attacker techniques.

* Understanding of Windows and Linux operating systems and command line tools.

* Hold 2 or more of the following certifications; CISSP, Security+, GSEC, GCIH, CEH or GCIA certification.