Security Incident Responder
- Recruiter
- Confidential
- Location
- Bracknell
- Salary
- Competitive
- Posted
- 07 Jun 2021
- Closes
- 05 Jul 2021
- Sectors
- Facilities Management
- Contract Type
- Permanent
- Hours
- Full Time
You will analyze disparate pieces of technical and non-technical information, from a variety of sources and in many peculiar formats, in order to quickly and accurately assess the scope, severity and potential impact of a security issue or vulnerability, or event, or incident and to work with other internal (3rd party security partners) teams to take appropriate action on a timely basis and at times, under pressure.
You will be part in assessing the effectiveness of security and risk management controls, to detect security issues, events and incidents (attacks, intrusions) and to be able to recommend appropriate and proportionate actions to keep data and operations, as well as customer data safe.
Key responsibilities
* Monitor, react to, investigate and respond to all real or perceived information security and cyber-related events, issues, incidents, threats, and attacks within desired time scales.
* Be familiar with, and or experience delivering, incident readiness and preparedness services, such as tabletop exercises, threat briefings, incident playbooks or runbooks, standard security operational procedures (SOPs), and practices to protect the enterprise and educate fellow colleagues where necessary
* Perform analysis for data acquired through observability, SIEM, produce actionable insights and begin to gather a timeline of events
* Determine the severity of alerts and security vulnerabilities, assess potential impacts, recommend next steps, follow through with risk treatment and mitigation
* Run aux or war room efforts to focus efforts on isolation, forensics, and maintaining contact with key stakeholders and the company's DPO and legal council. Notify ICO, via Security Manager and CIO
You will be part in assessing the effectiveness of security and risk management controls, to detect security issues, events and incidents (attacks, intrusions) and to be able to recommend appropriate and proportionate actions to keep data and operations, as well as customer data safe.
Key responsibilities
* Monitor, react to, investigate and respond to all real or perceived information security and cyber-related events, issues, incidents, threats, and attacks within desired time scales.
* Be familiar with, and or experience delivering, incident readiness and preparedness services, such as tabletop exercises, threat briefings, incident playbooks or runbooks, standard security operational procedures (SOPs), and practices to protect the enterprise and educate fellow colleagues where necessary
* Perform analysis for data acquired through observability, SIEM, produce actionable insights and begin to gather a timeline of events
* Determine the severity of alerts and security vulnerabilities, assess potential impacts, recommend next steps, follow through with risk treatment and mitigation
* Run aux or war room efforts to focus efforts on isolation, forensics, and maintaining contact with key stakeholders and the company's DPO and legal council. Notify ICO, via Security Manager and CIO