Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

Cyber Security Incident Response Specialist
Company Ascension
Location Remote
Preferred GIAC Certifications GSEC
Travel 0%
Salary Not provided
Contact Name Tiffany Keller
Contact Email tkeller/at/
Expires 2020-07-14

Job Description


Cyber Security Incident Response Team (CSIRT) Coordinator: Will go through training for CSIRT Coordinator role and will be placed into on-call rotation schedule. Will be required to lead CSIRT events from detection to closure. Will be responsible for:

Leadership communications
Coordination of technical teams during the event
Completion of CSIRT checklists
Documentation of final analysis report
Completion of After Action Analysis and documentation

Advanced Threat Hunting: Will be responsible for taking out of band Indicators of Compromise (IOCs) and completing threat hunts for identified IOCs within the Ascension environment. Requires use of multiple tools such as Tanium, Cylance, Chronicle, Fortinet, etc.

Advanced Triage of critical security events: Will act as an escalation point for critical events. Will need to understand Ascensions infrastructure and workflows. Creating\enhancing process workflows, playbooks and processes to improve security response abilities

Work with team on developing new SEcurity Operations Center (SOC) capabilities and trends to improve incident response times and metrics. May require learning new technologies and how to integrate them into existing workflows and\or developing new workflows.
Being able to work in a team environment:
Able to work closely with others
Share information
Communication skills (verbal and writing)

What You Will Need


High school diploma/GED with 2 years of experience, or Associate's degree, or Bachelor's degree required

Work Experience:

1 year of experience required.
4 years of experience preferred.
2 years of leadership or management experience preferred.

Preferred Education

Bachelor's Degree
Minimum of 5 years IT security experience
GSEC certification or equivalent within a specialized security field
Technical ability such as, scripting, security tools experience, log monitoring, malware analysis, memory analysis, etc
Ability to multitask
Understanding of basic network infrastructure components

Desired Experience

Incident Response experience
Ability to think and respond rapidly to critical security situations
On-Call and after hours work (as needed and scheduled)