Cybersecurity Incident Response Specialist

CÔNG TY TNHH AMARIS VIỆT NAM

Địa điểm làm việc: Toàn Quốc

Hết hạn: 02/06/2024

Chi tiết công việc
Giới thiệu công ty

Vị trí công việc này hiện tại đã hết hạn nộp hồ sơ, bạn có thể tham khảo thêm một số công việc liên quan phía dưới

Mô tả công việc

ABOUT THE JOB
A self-starter, independent with minimal supervision and strong hands-on experience in building security monitoring and incident response capabilities, including playbook, processes, and tooling.
Provide security monitoring and incident response expertise to businesses and collaborate with various parties in the group and business units.
Act as a subject matter expert on activities relating to cyber-related detection and incident response.
Lead triaging and investigations into intrusions and other cyber security breaches.
Provide a coordinated response to complex cyber-attacks that threaten a company's assets, intellectual property, and systems.
Continuous development, operation, and improvement of security monitoring and incident response processes, tooling, and solutions as required.
Research and recommend solutions for incident response and support digital forensics.
Work with VAPT/Red team members to incorporate security vulnerabilities and attack use cases into the security monitoring and IR playbook.

Yêu cầu

ABOUT YOU
Academic degree in Cybersecurity, Information Technology, Computer Science, or related fields
5+ years of in-depth, hands-on working knowledge in security operations, incident response, and security monitoring activities in a global environment
Ability to join the dots in the identification of incidents (including triage, correlation to past or concurrent incidents/alerts) to post-incident recovery activities.
Good understanding of tactics, techniques, and procedures that could be used in cyber kill chain for recon, persistence, lateral movement, and ex-filtration.
Ability to develop and operationalize security monitoring capabilities, tooling, and use cases for different tech stacks (e.g., APIs, applications), including cloud and container setup.
Good hands-on experience in digital forensics and threat hunting is a plus.
The threat and vulnerability landscape includes malware, emerging threats, attacks, and vulnerability management.
Good understanding of technology (e.g., cloud and containers) and Agile development concepts, networking topologies, telemetry, protocol usage, and enterprise hardware, including switches, routers, and firewalls, and their security roles.
Ability to explain theoretical concepts to team members with varying ICS backgrounds.
Experience with Splunk or sumo logic tools.
Programming and scripting languages, e.g., Perl, Python, PowerShell, or shell scripting.
Good understanding of industry trends and developments, including their impact on the business.
Strong communication skills - oral and written.

Quyền lợi

Benefits
13th-month salary
14+ annual leaves per year
Premium healthcare insurance, starting from your probation period
Project reviews and yearly performance appraisals
Annual company trips
Teambuilding activities: Team lunch/dinner, events, and celebrations, sports clubs (football, yoga, badminton, etc.)
International team with flexible working time + hybrid working
Tailor-made career path
Technical workshops and training courses
Mobility: Opportunities to be on-site abroad in our offices in over 60 countries
Equal Opportunity
Amaris Consulting is proud to be an equal opportunity workplace. We are committed to promoting diversity within the workforce and creating an inclusive working environment. For this purpose, we welcome applications from all qualified candidates, regardless of gender, sexual orientation, race, ethnicity, beliefs, age, marital status, disability, or other characteristics.