Senior Security Incident Response Analyst job in Baltimore, MD
Vacancy has expired
Baltimore, MD CorTech LLC
| Job Ref: | 366319 |
| Employer: |
CorTech LLC |
| Job Type: | Contract |
| Salary and Benefits: | 74.00/Per Hour |
| Remote: | No |
Location |
|
| City: | Baltimore, MD |
| Post Code: | 21201 |
| Map: |
|
Description |
|
|
JobsRUs.com is seeking to hire a Senior Security Incident Response Analyst for our client! Benefits Available! Weekly Pay! Remote Position! Pay Rate - $70-77.50/hr Job Description Security Incident Handling: Participate directly in security incident handling, supporting the existing CSIRT organization. This will include rotational accountability as the on-call incident handler/coordinator responsible for the 24/7 end to end response lifecycle of reported incidents. Key activities include but are not limited to coordinating and executing response activities, ticket management, engagement with infrastructure and security support partners, impact analysis and CSIRT communications. Project Support: Actively participate in the delivery of IT application, infrastructure and process-oriented projects in support of continuous improvement and ongoing enhancements to the program. Work with the Incident Response Program Lead to ensure project milestones and objectives are achieved. Program Capabilities and Process Maturity: Proactively identify areas of opportunity and work with the Incident Response Program Lead to recommend and execute improvements to the program. Includes but is not limited to CSIRT infrastructure, Security Orchestration and Automated Response capabilities, optimization of the MITRE ATT&CK framework, underlying CISRT processes and incident response documentation, threat intelligence and detection capabilities, and cross functional collaboration with internal and external stakeholders as it relates to incident response. Metrics and Reporting: Execute the development and implementation of key metrics and reporting to measure the effectiveness of our Threat Detection and Response program. Work with the Incident Response Program Lead to facilitate upward reporting of incident response data. Program Governance: Actively participate in the planning and execution of internal governance and incident response preparedness activities, including but not limited to incident ticket review, lessons learned activities and incident response tabletop exercises. Required Experience 5 or more years of experience in responding to cybersecurity incidents required for this role Experience with use of the following tools/capabilities during an incident response: Microsoft Defender, Microsoft Sentinel, Microsoft Azure Experienced in the following technical areas: Network Security, Endpoint Security, Cybersecurity Incident Response, Security Orchestration and Automation Required Skills Able to closely collaborate with and lead cross functional teams of technical experts during cybersecurity incident response scenarios | |
ref: (366319)
less than 2 minutes ago
Back to search results