TEEMA -
472 emplois
Burnaby, BC
Job Title: Cyber Security Incident Response CommanderJob ID: KM88617331
The Information Security department is looking for a senior Cyber Security Incident Response Commander to drive and coordinate a number of remediation activities. This critical role requires a detailed understanding of cyber security and in depth knowledge of computer networking fundamentals, modern threats and vulnerabilities, attack methodologies, threat actors and forensics methodologies and tools. This position is responsible for leading and conducting highly technical incident response engagements, setting the incident response plan, and collaborating with various teams in the correct application of incident response processes.
What you will be doing:
For more information about TEEMA and to consider other career opportunities, please visit our website at www.teemagroup.com
The Information Security department is looking for a senior Cyber Security Incident Response Commander to drive and coordinate a number of remediation activities. This critical role requires a detailed understanding of cyber security and in depth knowledge of computer networking fundamentals, modern threats and vulnerabilities, attack methodologies, threat actors and forensics methodologies and tools. This position is responsible for leading and conducting highly technical incident response engagements, setting the incident response plan, and collaborating with various teams in the correct application of incident response processes.
What you will be doing:
- Provide technical leadership and conduct incident response engagements.
- Develop incident response strategies, paying particular attention to industry standard methodologies and advances in technology and cyber security.
- Perform sophisticated digital forensic, host-based or network analysis during an investigation.
- Act as the senior subject matter expert during security incidents.
- Work closely with other teams to provide mitigation recommendations to reduce the overall security risk within the organization.
- Formalize the ICS structure for cyber security Incident Response.
- Perform forensic collection of endpoint or network evidence with forensically sound procedures, document evidence handling with chain-of-custody procedures, and conduct forensic investigations to industry standard methodologies.
- Perform advanced “Threat Hunting” for unknown cyber security events in order to find, identify and categorize advanced cyber threats.
- Research trends in new security threats, technologies and regulations; advise and train team members to maintain awareness.
- Determine and classify the severity of alerts; assess potential impacts of classification as defined in knowledge base.
- Validate triage conducted by analysts and automated tools.
- Report potential security incidents.
- Other duties as assigned.
- Experience working within the Health Authorities is highly preferred.
- Experience acting as incident commander for simultaneous response engagements.
- Ability to effectively navigate and deliver results in a large and high pressure Environment.
- Ability to drive and co-ordinate a number of remediation activities while not under active response.
- Strong forward thinking, analytical, interpersonal, and pragmatic problem- solving skills.
- Strong verbal and written communication skills, with the ability to explain concepts and topics in layman's terms to non-subject matter experts.
- Able to work expeditiously as an individual contributors and as a team members.
- Subject matter expertise in the areas of Advanced Threat Hunting, Malware Analysis and Reverse Engineering.
- ICS Level 200 training is preferred.
For more information about TEEMA and to consider other career opportunities, please visit our website at www.teemagroup.com