Incident Response Lead
Des Moines, U.S.
Rémunération brute 135000.00 - 165000.00 $ Par an
Durée indéterminée
Temps plein
Role Description
• Analyzing, triaging and managing incidents end-to-end based on business impact and applicable privacy/legal/regulatory requirements
• Collaborating with the managed security services supplier in designing rules/alerts within the security information & event management system (SIEM) and/or other security technologies employed by Xerox to swiftly detect and/or prevent compromise to systems and/or information.
• Analyze data from various sources to identify possible risk indicators, determine possible root cause and identify preventative actions
• Perform eDiscovery assignments and forensic analysis in accordance with standard legal hold policies, procedures, and in alignment with record retention guidelines as required by the Office of General Counsel.
• Act on behalf of the incident response management if/when necessary to maintain target service delivery levels and mitigation of incidents on Xerox network and/or against Xerox resources.
• Own end to end incident response process and lead a team of highly technical incident response analysts
Skills & Requirements
• At least 7 years of professional experience in an incident response role
• Knowledge of common security vulnerabilities including OWASP Top 10 and SANS 25
• Understanding of IDS/ IPS, SIEM, email security, EDR and end point protection technologies
• Experience in performing disk/ memory forensics and/or malware analysis would be a plus
• Strong understanding of network, application layer and OS fundamentals
• Experience analyzing and responding to incidents in cloud environments
• Offensive security experience would be a plus
• Strong attention to detail, time management and analytical skills
• Strong written and communication skills
• Uncompromising personal and professional integrity and ethics
• Associates Degree in Cybersecurity, Computer Science, Information Systems, or related field.