| Lead Cyber Blue, Tampa, FL (hybrid) at Tampa, Florida, USA |
| Email: [email protected] |
| From: Yogesh Sharma, StellentIT [email protected] Reply to: [email protected] Lead Cyber Blue Location: Tampa, FL Interview: Phone + Skype Job description: Reporting to a Cyber Blue Team Manager, you are responsible for detecting, analyzing, and responding to cyber security events. As a technical lead, you lead detecting, investigating, and responding to cyber security events in the organization. You are a member of the Cyber Security Incident Response Team (CSIRT) and qualified to act as Incident Commander on serious incidents, as a result may be tasked with responding to cyber incidents outside of normal work hours. You are also responsible for leading certain programs and initiatives within the Cyber Blue Team as well as assisting in measuring and improving team performance and processes. Expectations for the Cyber Blue Team Technical Lead: - Monitor, Detect, Analyze, research, and respond to cyber security events including Network events, OS Log events and forensic information. - Act as an escalation point for junior team members. - Lead and coordinate major investigation s and incident response activities. - Act as Incident Commander for serious (P2-P4) incidents. - Perform eDiscovery and other technical tasks. - Independently lead technical programs and large projects. - Train and mentor junior staff members. - Work with management and QA/QC lead to improve the overall performance of the team. - Work with the Cyber Purple Team to implement content and tune security platforms. - Collaborate with stakeholders from other business units to conduct investigations, review plans and procedures, and respond to cyber incidents. - Participate in training, exercises, and process improvement program. - Occasionally travel to conferences, training, and other DTCC offices (up to 10%). - Participate in on-call rotation and occasional after-hours work. - Create messaging, socialize your program, and evangelize security at DTCC. To succeed in this role, you should: - Demonstrate strong grasp of forensic interpretation of data - Demonstrate the ability to research and mentor team members on interpreting on OS log files, network logs, flow data and other security data - Have previous experience successfully leading technical projects and complex incidents requiring collaboration with multiple people. - Have at least three (3) years previous experience as a SOC analyst or similar role. - Demonstrate tactical leadership of teams to accomplish technical tasks and projects. - Demonstrate the ability to produce written reports including detailed analysis and recommendations. - Demonstrate the ability to convey complex technical concepts to both technical and non-technical audiences. - Be a subject matter expert in a particular technology or security domain as well as have hands-on experience and knowledge of modern security tools and DFIR best practices. - Demonstrate the ability to take minimal high-level requirements and independently produce and execute an action plan to accomplish tasks. - Demonstrate the ability to independently prioritize and manage multiple tasks. - Demonstrate a strong desire to achieve and contribute to a high-performing team. Keywords: quality analyst Florida |
| [email protected] View all |
| Tue Aug 01 23:35:00 UTC 2023 |