DFIR Specialist – OT
Job Description
Our Client
Leading US based IT MNC
Your Responsibilities
- Work as a part of the SOC team
- Operate as a first point of escalation for Tier 2.
- Hunt for suspicious anomalous activity based on data alerts or data outputs from various toolsets.
- Review and build new operational processes and procedures.
- Provide first-responder forensics analysis and investigation.
- Drive containment strategy during data loss or breach events.
- Triage and resolve advanced vector attacks such as botnets and advanced persistent threats (APTs).
- Work directly with data asset owners and business response plan owners during low and medium severity incidents.
- Provide advice on the tuning of Security controls like proxy policy, in-line malware tools based on threat feeds, trust and reputation data, incidents, or vulnerabilities, and exploits of downstream systems.
- Develop SOC use cases, provide tuning recommendations to administrators based on findings during investigations or threat information reviews.
- Perform Threat hunting based on threat intelligence feeds
- Lead response actions for incidents where CIRT is not required to intervene (low/medium priority).
- Perform administrative tasks per management request (ad hoc reports/ trainings).
Your Qualifications
- Graduate degree or equivalent
- 5+ years of minimum experience in Information security
- 2+ years of prior experience in a similar position
- CEH certified
- SEC511: Continuous Monitoring and Security Operations training
- SANS SEC504: Hacker tools, Techniques, Exploits, and Incident Handling training
- SANS FOR500 series training
- Advanced Security Essentials – SEC501 (optional GCED certification)
- Perimeter Protection In-Depth – SEC502 (optional GCFW certification)
Halian Group
With over 20 years of experience, we have come to understand that innovation is the only way to provide agile, practical solutions that transform businesses and careers.
Our tech-talent and smart services help you to realise tomorrow's potential. Discover the amazing things possible when you bring the right people and the right technologies together.
Job Details
Employment Types:
Part time
Industry:
IT / Computers – Software
Function:
IT
Roles:
Software Engineer / Programmer
Skills:
DFIR Specialist