Role details

Incident Response | Intrusion Analyst | CSIRT Engineer

New York   •  Permanent

Bullet points

  • Computer Security Incident Response Team (CSIRT) Engineer
  • Computer Network Defense (CND) Incident Responder

About Our Client

Our global financial services client is seeking an Incident Responder (CSIRT Engineer or Intrusion Analyst) to be responsible for rapidly addressing security incidents and threats within the organization.

Job Description

As part of the Computer Security Incident Response Team (CSIRT), your role as a first responder, you will be using a host of forensics tools to find the root cause of a problem, limit the damage and see that it never happens again. Like a firefighter, part of your job will also involve education and prevention.

On the ground level, your job is to keep attacks from occurring and/or prevent them from getting worse. During the course of your day, you may be required to:

  • Actively monitor systems and networks for intrusions
  • Identify security flaws and vulnerabilities
  • Perform security audits, risk analysis, network forensics and penetration testing
  • Perform malware analysis and reverse engineering
  • Develop a procedural set of responses to security problems
  • Establish protocols for communication within an organization and dealings with law enforcement during security incidents
  • Create a program development plan that includes security gap assessments, policies, procedures, playbooks, training and tabletop testing
  • Produce detailed incident reports and technical briefs for management, administrators and end-users
  • Liaison with other cyber threat analysis entities

The Successful Applicant

As the Incident Responders, you are expected to know the systems in question inside-out and any forensics skills are equally valued. Other key skills to be consider for this role are:

  • Windows, UNIX and Linux operating systems
  • C, C++, C#, Java, ASM, PHP, PERL
  • TCP/IP-based network communications
  • Computer hardware and software systems
  • Operating system installation, patching and configuration
  • Backup and archiving technologies
  • Web-based application security
  • eDiscovery tools (NUIX, Relativity, Clearwell, etc.)
  • Forensic software applications (e.g. EnCase, FTK, Helix, Cellebrite, XRY, etc.)
  • Enterprise system monitoring tools and SIEMs
  • Cloud computing

What's on Offer

Competitive Base, Bonus and Benefits.

Apply for this job

Click the Apply or LinkedIn button below or contact Christopher Adeyeri quoting job reference 1219692
As you are using an Apple iOS device we are unable to offer you the CV upload function. Please apply with your Linkedin profile below or contact Christopher Adeyeri quoting job reference 1219692