Job Details

Home

CSIRT Consultant (hybrid) Local to New York (Need Local Candidate only) at York, New York, USA

http://bit.ly/4ey8w48
https://jobs.nvoids.com/job_details.jsp?id=1315177&uid=

From:

Anurag,

tekinspirations

[email protected]

Reply to: [email protected]

Hi,

I Hope you are doing great.

Please find below position if you have any matching candidate as per requirement.

Please send me updated resume with candidate information.

Job Title:

CSIRT Consultant (hybrid)

Duration :6+ months

Location: Local to New York (Need Local Candidate only)

Interview- Skype

No H1B,CPT,OPT

minimum 5 Years of Banking/Finance experience Must

CSIRT Consultant is a technical expert role within the US Information System Security (ISS) Team in NY, functionally aligned to Groups ISS CSIRT team in Head Office, France.

The US ISS team oversees and supervises the Information System Security related matters in America, including incident response (CSIRT) as part of the Global Follow The Sun (FTS) model.

In this role, CSIRT Consultant role will be responsible for responding and managing end-to-end Security Incident Management Lifecycle: Incident Identification, Triage, Containment, Eradication, Recovery and Lesson Learnt.

The person will be technical point of contact to respond and drive the security incidents response in the region as part of the global FTS model.

The CSIRT Consultant has a wide spectrum of responsibilities and will be responsible for following activities (but not limited to) in day-to-day work:

Identifying and detecting Incidents and taking immediate action on security incidents including (and not limited to) DoS attacks, malware attacks, phishing attacks, web attacks.

End to end ownership in driving and leading Security Incident Response and Resolution activities; Participate and support performing forensics investigations as required to respond to the Security Incidents.

Responding to Security Threats and Intelligence alerts & notifications from Group CERT, Regional Regulators and authorized Threat Intelligence groups and ensuring appropriate preventive and detective actions are coordinated and deployed in liaison with IT Operations teams as per the defined approach and in timely manner.

Owning end to end coordination, communications and deployment of action plans for Threat Advisories or lesson learnt from Security Incidents.

Prepare detailed Incident Post-mortem report and Executive Summary to document the Security Incident chronology, root cause, remediation and lesson learnt.

Creating and updating the incident response plan (IRP) and playbooks and ensuring periodical review of playbooks to ensure the relevancy of response actions in current context, including updated information of all stakeholders involved.

Collaborate with other Geos CSIRT team members on security matters and act as a backup to manage security incident and other security activities in scope as needed.

Periodic review of security measures of Networks (Switches. Routers, Firewall, IPS, etc.) In addition, Systems (Win*, *NIX, etc.) in support of management of vulnerabilities.

Support and integrate incident response, threat intelligence, and overall security strategy as needed.

Complete all mandatory training as required to attain and maintain competence.

Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Compliance manual and Compliance policies and procedures as issued from time to time, Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer, zone wide.

Support and run annual table-top incidents exercise with management.

Vulnerability management: Ensure vulnerability remediation process is known followed and at the expected level of performance.

In case of severe security incident (suspected or effective attack): Coordination of investigation, mitigation, and remediation operation in relation to IT operation and application teams.

Management and Reporting

Reports to the IT Security Officer

Thanks and Regards,

Anurag Singh

Technical Recruiter

TEK Inspirations Pvt. Ltd.
|
Desk
:
+4696388009

Email-
[email protected]

Keywords: information technology New York
CSIRT Consultant (hybrid) Local to New York (Need Local Candidate only)
[email protected]
http://bit.ly/4ey8w48
https://jobs.nvoids.com/job_details.jsp?id=1315177&uid=

[email protected]
View All

11:03 PM 16-Apr-24

To remove this job post send "job_kill 1315177" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

anurag.singh@tekinspirations.com wrote:
From:

Anurag,

tekinspirations

anurag.singh@tekinspirations.com

Reply to:   anurag.singh@tekinspirations.com

Hi,

I Hope you are doing great.

Please find below position if you have any matching candidate as per requirement.

Please send me updated resume with candidate information.

Job Title:

CSIRT Consultant (hybrid)

Duration :6+ months

Location: Local to New York (Need Local Candidate only)

Interview- Skype

No H1B,CPT,OPT

minimum 5 Years of Banking/Finance experience Must

CSIRT Consultant is a technical expert role within the US Information System Security (ISS) Team in NY, functionally aligned to Groups ISS CSIRT team in Head Office, France.

The US ISS team oversees and supervises the Information System Security related matters in America, including incident response (CSIRT) as part of the Global Follow The Sun (FTS) model.

In this role, CSIRT Consultant role will be responsible for responding and managing end-to-end Security Incident Management Lifecycle: Incident Identification, Triage, Containment, Eradication, Recovery and Lesson Learnt.

The person will be technical point of contact to respond and drive the security incidents response in the region as part of the global FTS model.

The CSIRT Consultant has a wide spectrum of responsibilities and will be responsible for following activities (but not limited to) in day-to-day work:

Identifying and detecting Incidents and taking immediate action on security incidents including (and not limited to) DoS attacks, malware attacks, phishing attacks, web attacks.

End to end ownership in driving and leading Security Incident Response and Resolution activities; Participate and support performing forensics investigations as required to respond to the Security Incidents.

Responding to Security Threats and Intelligence alerts & notifications from Group CERT, Regional Regulators and authorized Threat Intelligence groups and ensuring appropriate preventive and detective actions are coordinated and deployed in liaison with IT Operations teams as per the defined approach and in timely manner.

Owning end to end coordination, communications and deployment of action plans for Threat Advisories or lesson learnt from Security Incidents.

Prepare detailed Incident Post-mortem report and Executive Summary to document the Security Incident chronology, root cause, remediation and lesson learnt.

Creating and updating the incident response plan (IRP) and playbooks and ensuring periodical review of playbooks to ensure the relevancy of response actions in current context, including updated information of all stakeholders involved.

Collaborate with other Geos CSIRT team members on security matters and act as a backup to manage security incident and other security activities in scope as needed.

Periodic review of security measures of Networks (Switches. Routers, Firewall, IPS, etc.) In addition, Systems (Win*, *NIX, etc.)  in support of management of vulnerabilities.

Support and integrate incident response, threat intelligence, and overall security strategy as needed.

Complete all mandatory training as required to attain and maintain competence.

Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Compliance manual and Compliance policies and procedures as issued from time to time, Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer, zone wide.

Support and run annual table-top incidents exercise with management.

Vulnerability management: Ensure vulnerability remediation process is known followed and at the expected level of performance.

In case of severe security incident (suspected or effective attack): Coordination of investigation, mitigation, and remediation operation in relation to IT operation and application teams.

Management and Reporting

Reports to the IT Security Officer

Thanks and Regards,

Anurag Singh

Technical Recruiter

TEK Inspirations Pvt. Ltd. 
|
Desk
:
 +4696388009

Email-
anurag.singh@tekinspirations.com

Keywords: information technology New York 
CSIRT Consultant (hybrid) Local to New York (Need Local Candidate only)
anurag.singh@tekinspirations.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]

Time Taken: 2

Location: ,