Cyber Operations Incident Response Lead

About The Position

Requirements

• Experience mentoring teams in incident triage, containment, and recovery
• Considerable understanding of incident response frameworks, like NIST 800-61, SANS, and others
• Confirmed past achievements managing global cyber incidents and leading Security Operations Centers
• Deep knowledge of SIEM, SOAR, EDR, and threat intelligence platforms, including SIM and SAR technologies
• Experience collaborating with law enforcement and external cyber threat-sharing networks

Nice To Haves

• Familiarity with cloud and hybrid infrastructure including, AWS, Azure, GCP
• Demonstrated ability to manage major incidents and lead crisis communications
• Relevant security certifications such as CISSP, CISA, or equivalent
• Ability to mentor and support junior team members

Responsibilities

• Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage.
• Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise.
• Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats.
• Triage of data loss prevention alerts to identify and prevent sensitive data for being exfiltrated from the banks network.
• Management of cyber security incidents including remediation & driving to closure.
• To contribute or set strategy, drive requirements and make recommendations for change.
• Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures.
• Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment.
• Manage and mitigate risks through assessment, in support of the control and governance agenda.
• Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does.
• Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business.
• Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies.
• Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives.
• Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes.

Benefits

• Barclays employees are eligible for a suite of competitive and generous employee benefits, including medical, dental and vision coverage, 401(k), life insurance, and other paid leave for qualifying circumstances.
• This position is eligible for an incentive award.