坐标:伦敦
公司:Sony Pictures
职位:Regional Incident Response Manager
性质:Full-time
申请方式:阅读原文,点击链接申请。(如果链接打不开,请联系小编哟)
Job Description
Sony Pictures Entertainment’s London based Information Security team are currently looking for a Regional Incident Response Manager to join their team and be responsible for handling incident response duties and driving initiatives.
The Regional Incident Response Manager will conduct advanced computer and network forensic investigations relating to various forms of malware, computer intrusion, theft of information, denial of service, data breaches, and other incidents.
This role will work with the Security Operation Centre to rapidly assess, remedy, and/or refer incidents to proper resolution, as well as IT and other departments to identify root cause and develop corrective and preventive measures.
Additionally this position will work with threat assessment peers to identify and make recommendations to the Incident Response Executive Director to improve the security stance and incident response capabilities of the organization.
Core Responsibilities
Function as an incident response handler, directing IT and other departments during security incidents, including evidence preservation, corrective action, and preventive actions
Conduct advanced computer and network forensic investigations relating to various forms of malware, computer intrusion, theft of information, denial of service, databreaches, etc.
Assist in identifying and remediating gaps as identified throughout the investigation
Maintain technical knowledge within areas of expertise via formal training and self-education
Perform basic programming and develop scripts in support of the Incident Response and Threat Analysis team
Design, document, and implement incident response processes, procedures, guidelines, and solutions
Responsible for technical and executive level reports on incident response issues
Some travel may be required within region and to the home office in Los Angeles, California, United States
Additional Responsibilities
Engaging with business stakeholders to understand business practices; gathering and facilitating the convergence of business, technical and security requirements; liaising with IT to align the environment with existing and future requirements
Collaborating with IT to ensure security is factored into the evaluation, selection, installation and configuration of hardware, applications and software; researching technologies and identifying differentiators and integration challenges; providing technical and managerial expertise on maintenance and administration aspects
Providing support and guidance on legal and regulatory compliance including data privacy
Tracking, reporting, and coordinating the remediation of security vulnerabilities
Work closely with the regional Info Security team and respond to tasks from the regional Info Sec lead
Functional Knowledge Of
Host and network forensic tools and techniques
Information security, client / server architectures, and networking
Current and evolving cyber threat landscape
Threat intelligence and applied use within incident response and forensic investigations
Malware analysis and understanding attack techniques
Interpreting, searching, and manipulating data within enterprise logging solutions
Working with network, host, and user activity data, and identifying anomalies
Programming and scripting to support data analysis and simple tool development
Vulnerability Management
Preferred Technical / Certification Requirements
Information Security certification (CISSP, CISM, etc.)
Incident and Forensic Security certification (GIAC GCIA / GCIH)
Ethical hacking certifications (CEH, etc.)
Required Experience
Bachelor’s degree or equivalent working experience
Preferred
Typically 5-7 years of overall information security experience
Typically 3-5 years of incident response experience
Typically 1-2 years of forensic / malware experience
Typically 1-2 years of SIEM / IDS / IPS / PCAP analysis experience
Typically 1-2 years of cyber threat tracking
Typically 1-2 years of Vulnerability management and/or analysis
Other Preferred Technology Knowledge / Skills / Abilities
Knowledge Of
Hacker techniques, tools, and motivations
Operating systems (Windows, OS X, Linux and UNIX)
Multilayer security architectures and controls
Application architecture (mainframes, databases, web, middleware, virtual)
Network architecture (firewalls, routers, switches and load balancers)
Security technologies (IDS/IPS, advanced endpoint protection, AV)
Experience In
Analyzing file system images, memory images and network packet captures
Using commercial and open source security testing / vulnerability analysis tools
Problem solving with missing information while under pressure with short deadlines
Dynamic malware analysis and indicator extraction
Indicator pivoting, tracking and analysis
Ability to prioritize multiple tasks rapidly, formulate a plan, respond quickly and communicate with customers and leadership
Generating both technical and executive reports and briefings
Skills
Programming in one or more of the following: C, C++, C#, Java, .NET, SQL, Python, ASM
Shell scripting in one or more of the following: Perl, Bash, PHP, WMI, PowerShell
Reviewing application source code for security vulnerabilities
Using debuggers and/or de-compilers
Reverse engineering complex code, using tools such as IDA Pro, OllyDBG and othe rsimilar tools
Bilingual speaking and writing skills (Japanese, Chinese, Spanish, etc.)
Ability To
Take on new responsibilities and influence others as needed to deliver consistent results
Strong verbal communications skills and concise written communication skills
Strong organizational and multi-tasking skills
Pick up new skills through self-learning and on the job training
Innovate and stay current on security technologies
Attention to detail with flexibility in addressing changing requirements
免责申明:本文观点并不代表IDEABOXES LIMITED立场。更多的工作相关细节,请与雇主直接联系会更有效率哟!谢谢大家一如既往的支持!
关于IDEABOXESUK
IDEABOXESUK是一家made in London的职业咨询猎头公司。致力于帮咱华人在英国找到自己的career path。在这里,周一至周日,我们会分享英国华人的工作资讯和英国职场的各种事儿
我们旨在创造三赢局面,相信我,您不会失望。也请不要走开,因为这个平台需要与您一起携手!我们的梦想是建立一个英国最大最正规的职业平台,让每一个在英华人都有职场归属感。
嘘!我知道我们现在力量还很微薄,也有很多不足,可是梦想还是要有的!说不定通过努力就能实现呢!您说呢?期待您的关注与指导!更多详情及信息可登录ideaboxesuk官方网站http://www.ideaboxes.co.uk获取。
