Cyber Security Incident Response Lead (Insider Threat) (Computer Emergency Response Team)

• Monitors the performance and efficiency of computer forensics practices.
• Operates intrusion detection and prevention technologies, systems and tools to monitor, analyse and respond to networks and systems.
• Monitors forensics procedures and adjusts digital forensics tools accordingly.
• Ensures optimisation to increase the response speed and outcome reliability.
• Assists in developing internal control reports provided to external auditors.
• Application of information security laws in computer crime investigation.
• Analyses unexpected network or system events, assessing their impact, and devising and implementing actions to stop them.
• Manages the sharing of important information quickly and accurately.
• Supports the monitoring/review of policies, processes/procedures and prioritise operations.
• Leads and manages incident response activities.
• Communicates to senior leads awareness of significant incidents.
• Support the development of enhance strategies and incident response playbooks.
• Manage stakeholder relationships and streamline processes.
• Shape and implement products and processes to protect the bank from Insider threat.
• Develops appropriate metrics to display the effectiveness of Insider threat.
• Monitor/review processes/systems and product performance to ensure continuous improvements are made to prevent and eliminate insider threats.

The ideal candidate will possess expertise in incident management within cloud environments and a sound knowledge of information security. Experience with application security and regulatory compliance specific to financial services is highly valued., * Experience with incident management in cloud-based environments.

• Knowledge of maintaining application security tools.
• Demonstrable experience in information security and incident response.
• Understanding of regulatory and compliance frameworks relevant to financial services.

Responsabilidades

• Monitor performance of computer forensics practices.

• Operate intrusion detection and prevention technologies.

• Manage incident response activities.

• Support development of strategies and response playbooks., Designing security programs Application testing Response to application threats Computer crime handling Information security Digital threats monitoring Endpoint security Security compliance Incident response Malware analysis Insider threat detection Container security monitoring Reverse engineering malware Regulatory compliance knowledge SIEM platforms Descripción del empleo, * Experience with incident management in cloud-based environments.

• Knowledge of the tools and processes for maintaining application security.

• Skills/knowledge of designing and implementing security programs.

• Experience of application testing to detect bugs, flaws, and insecure configurations.

• Experience of responding to application threats following established security policy.

• Knowledge of concepts, tools, and practices of dealing with computer crime.

• Experience of detecting and preventing crimes that involve computers/networks as instruments.

• Sound knowledge of information security.

• Knowledge of techniques, approaches, and processes of digital threats.

• Experience of detecting, monitoring, analysing, and preventing digital threats.

• Knowledge of concept, issues, and techniques of endpoint security.

• Experience of ensuring security compliance of endpoint devices in various circumstances.

• Demonstrable experience in fields such as information security, incident response, or related domains.

• Demonstrate experience in incident response, security monitoring, digital forensics, and advanced malware analysis.

• Experience of identifying, managing, and producing incident updates, reports, and recommendations to SLT to facilitate decision-making and risk management.

• Knowledge of identity and access management (IAM) security principles and insider threat detection tooling.

• Familiarity with container and Kubernetes security monitoring.

• Experience with reverse engineering or sandbox analysis of malware samples.

• Understanding of regulatory and compliance frameworks relevant to financial services (e.g., PCI-DSS, GDPR, DORA, NIST CSF).

• Experience with SIEM platforms.

Infinity Quest Córdoba Presencial EUR 40.000 - 60.000 Jornada completa Hace 8 días Recibe más respuestas de empleadores, Infinity Quest is looking for a skilled professional in computer forensics based in Córdoba, Spain. The role involves monitoring, analysing, and responding to digital threats, as well as leading incident response activities.