Cyber Security Incident Response Specialist

Cyber Security Incident Response Specialist
Company:

(Confidential)


Cyber Security Incident Response Specialist

Details of the offer

Req ID: 86847 At NTT DATA Services, we know that with the right people on board, anything is possible. The quality, integrity, and commitment of our employees are key factors in our company's growth, market presence and our ability to help our clients stay a step ahead of the competition. By hiring the best people and helping them grow both professionally and personally, we ensure a bright future for NTT DATA Servicesand for the people who work here.

NTT DATAServices currently seeks a
Cyber Security Incident Response Specialistto join our team in
Mountain View,
California (US:CA),
United States (US).

Responsibilities:

:Conduct highly technical examinations, analysis and reporting of computer based evidence related to security incidents (intrusion artifacts/IOCs) or investigations.
:Effective and secure handling of digital evidence and matter confidentiality.
:Perform incident triage and handling by determining scope, urgency and potential impact thereafter identifying the specific vulnerability and recommending actions for expeditious remediation.
:Ability to analyze data, such as logs or packets captures, from various sources within the enterprise and draw conclusions regarding past and future security incidents.
:Document incidents from initial detection through final resolution.
:Coordinate with and act as subject matter expert to resolve incidents by working with other information security specialists to correlate threat assessment data.
:Maintain and expand related information security metrics.
Required Qualifications:

:Bachelor's degree (B.A/B.S.) or equivalent in computer science, business administration, or equivalent discipline from an accredited college or university
:12:15 years of experience as a computer forensics analyst with demonstrated skills in performing digital investigations including eDiscovery, and an understanding of network forensics (logging, architecture, appliances)
:Must be a US Citizen with an active Top Secret SCI clearance
Skills:

Knowledge of incident response processes (detection, triage, incident analysis, remediation and reporting).
High level of ethical hacker knowledge and understanding of malware/ransomware.
Strong knowledge of network protocols, Windows/Linux OS, IOCs and BIOCs
Understanding of network and system intrusion and detection methods; examples of related technologies include Splunk, Next Generation Endpoint Protection Platforms (EPP), Security information and event management (SIEM), Endpoint Detection and Response (EDR)
Expert knowledge and experience of Microsoft Windows Desktop Operating Systems.
Expert Knowledge in VMWARE, KVM and other virtualization technologies.
Ability to operate Linux workstations, servers.
Ability to build, maintain, and operate a sandbox lab environment.
Proven experience with most commonly used forensic toolkits such as FTK, Sift, and Sleuth Kit through the Acquisition, Analysis, and Reporting stages.
Proven training and experience in Encase equipment and usage of Write Block Applications.
Red Team experience
Comfortable analyzing malicious artifacts in a safe manner such as potentially malicious websites, emails and malware
Excellent written and verbal communication skills with the ability to express thoughts clearly and accurately, know how to listen, and contribute in a client:facing environment.
Strong attention to detail and organizational skills.
High Level of Competence with Microsoft Excel for manipulating, sorting, combining, and creating pivot tables.
Ability to multitask and work independently with minimal direction and maximum accountability

Top Secret Clearance required

This position is only available to those interested in direct staff employment opportunities with NTT DATA, Inc. or its subsidiaries. Please note, 1099 or corp:2:corp contractors or the equivalent will NOT be considered. We offer a full comprehensive benefits package that starts from your


Source: Tiptopjob_Xml


Area:

Requirements


Knowledges:

  • Desktop
  • Linux

Cyber security risk and compliance specialist

A well-established company is seeking a Security Risk and Compliance Specialist for a growing team in the LA area. The successful incumbent will be and expert...


From Tiro Security - California

Published a month ago

Senior cloud infrastructure security engineer

An established internet-facing tech company is seeking an experienced Senior Cloud Infrastructure Security Engineer to lead their cloud security program in San...


From Tiro Security - California

Published a month ago

Senior cloud security engineer

An established internet-facing tech company is seeking an experienced Senior Cloud Infrastructure Security Engineer to lead their cloud security program in San...


From Tiro Security - Tennessee

Published a month ago

Senior cloud security engineer (aws)

An early stage startup is seeking an experienced Cloud Security Engineer to build and own their cloud security program in San Francisco. The successful...


From Tiro Security - California

Published a month ago