Senior Cyber Incident Response Analyst

About The Position

Requirements

• Host Intrusion Analysis Windows (Endpoint and Server)
• Host Intrusion Analysis Unix
• Network Intrusion Analysis
• Familiarity with categories of Malware and Malware Reverse Engineering techniques
• Experience working with security tools for the purposes of detection, diagnosis, containment and remediation
• Extensive knowledge of Windows server systems.
• Experienced in creating and maintaining a security incident response plan (IRP).
• Professional/native Swedish and professional English

Nice To Haves

• Customer focus - have the ability to work directly with customers and demonstrate services delivered to customers in a face to face setting when required.
• Capacity to multitask on several technical and operational issues simultaneously.
• A very good understanding of customer issues and the ability to empathize with customers as to their current situation.
• Ability to think through difficult issues and provide advice or when necessary.
• A clear understanding of the ITIL processes.
• Ability to work on assignments requiring sound judgement in resolving issues or in making recommendations.
• Initiative to drive all incidents to resolution, ensuring timely participation by all stakeholders.
• Ability to escalate issues to upper management, to include C-Level managers, in accordance with prescribed procedures.
• Incident Management and Incident communication experience.
• Experienced in meeting deadlines while following processes and procedures.
• Capable of working with other teams that challenge your processes and procedures.
• Understanding of ITIL, SANS, PCI DSS, ISO 27001 and ISO20000.
• Logical thought mindset and experience developing reusable processes / data architectures.
• SANS: Qualifications in Security Essentials (GSEC), Hacker Techniques & Incident Handling (GCIH), Host (GCFE/GCFA) & Network (GNFA) Forensics, Malware Analysis (GREM) and any Digital Forensics specializations.
• CREST certifications: Certified Incident Manager, Certified Host Intrusion Analyst, Certified Network Intrusion Analyst, Certified Malware Reverse Engineer, Practitioner Intrusion Analyst, Registered Intrusion Analyst.
• Certified Ethical Hacker.
• A strong team player with a flexible approach.
• Can demonstrate consistency in work attitude.

Responsibilities

• Work within established methodologies to perform a variety of Incident Response related activities for new and existing customers.
• Respond to cyber incidents.
• Proactively hunt for adversaries in customer networks.
• Conduct detailed Intrusion analysis – host and network.
• Perform malware reverse engineering.
• Provide Digital forensics and Cyber Threat Intelligence services.
• Perform proactive client services, such as compromise assessments.
• Evaluate and recommend tools and technology for incident response.