No more applications are being accepted for this job
- The IT Security Incident Response Associate will have the following responsibilities:
- Monitor and evaluate systems' cybersecurity state, analyse, and mitigate the impact of cybersecurity incidents
- Identify cyber incidents, root causes and malicious actors
- Act according to the Bank's Incident Response Plan, restore systems and processes functionalities to an operational state, collecting evidences and documenting actions taken
- Participate in MI calls to triage incidents
- Contribute to the development, maintenance and assessment of the Incident Response Plan and related playbooks
- Develop, implement, and assess procedures related to incident handling including analysis and reporting
- Identify, analyse, mitigate, and communicate cybersecurity incidents
- Measure cybersecurity incidents detection and response effectiveness
- Document incident results analysis and incident handling actions
- Evaluate the resilience of the cybersecurity controls and mitigation actions taken after a cybersecurity or data breach incident
- Adopt and develop incident handling testing techniques
- Cooperate with outsourced partners and MSSPs' SOC teams
- Manage any Incident Response tools & technologies to support the IR capabilities of the team
- Educated to degree level (Computer Science or similar)
- A suitable Security Certification such as CISSP, CISM or CFR (CIHE preferred)
- Expertise in Microsoft (Server & Workstation), UNIX and Linux Operating Systems
- Incident Handling standards, methodologies, recommendations, and best practices
- Verifiable experience and examples of dealing with incidents in a similar role
- Operating as part of a wider Security Operations Centre (SOC) team
- Detailed familiarity of Cloud Technologies and how to secure them
- In-depth knowledge of technical security solutions covering areas such as: SIEM, EDR, DLP, WAF, email security, DNS, encryption, PKI, cloud security, threat intelligence gathering, threat hunting, knowledge of MITRE framework and an understanding of the cyber 'Kill Chain'
- Practice all technical, functional, and operational aspects of cybersecurity incident handling and response
- Excellent crisis management skills, working under pressure with calmness, authority and respect
- Collect, analyse, and correlate cyber threat information originating from multiple sources
- Communicate, present and report to relevant stakeholders
- Manage and analyse log files
- Be proficient in firewall rule reviews
- Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;
- A working culture that embraces inclusion and celebrates diversity;
- An environment that places sustainability, equality and digital transformation at the heart of what we do.