Senior Incident Responder
One of Australia’s largest Financial Institutions is looking for a Senior Incident Responder to sit in the CSIRT.
Summary about this job
Security
Company: T+O+M Executive
Location: Sydney
Work type: Full Time
Salary: $150,000 - $160,000 base plus super and bonus.
Phone: +61-2-5723-1026
Fax: +61-2-5547-5381
E-mail: n\a
Site: n\a
Detail information about job Senior Incident Responder. Terms and conditions vacancy
Senior Incident Responder – Australian Financial Institution
One of Australia’s largest Financial Institutions is looking for a Senior Incident Responder to sit in the CSIRT. The successful candidate will be accountable for the effective management of the cyber security incidents across the Group, conducting digital forensics (network/host) in response to incidents and the discovery of any intrusions through hunting.
Key Responsibilities:
· Detect, respond and hunt for cyber security incidents while capturing essential details and artefacts
· Handle cyber security incidents, including performing lead investigator duties, from detection through to completion including post-mortem root cause analysis
· Utilise sensor data and correlated logs containing IDS/IPS, AV, web application firewalls, Operating System events, web proxy, and similar data to establish context and scope
· Operationalise actionable intelligence reports from the Cyber Intelligence team and external sources
· Maintain incident response documentation, participate in post-mortems, and write incident reports
· Partake in an “on-call” roster where required to ensure out-of-hours incident response coverage
· Work closely with others to develop and enhance incident response plans and playbooks
Skills and Experience:
· 5+ years working within a similar information security role
· An understanding of the operation and functionality of banking and related technologies
· Experience with Windows, Mac OSX and Linux.
· Strong technical understanding of network fundamentals and common Internet protocols.
· Proven experience with performing digital forensics/investigation, including analysing system artefacts (file system, memory, running processes, network connections) for indicators of infection/compromise
· Strong understanding of scripting languages such as Python and Windows PowerShell
· Strong technical understanding of the information security threat landscape (attack vectors and tools, best practices for securing systems and networks)
For a confidential discussion regarding this or any other job opportunities across cyber security please send a CV to [email protected]