保存工作 返回搜索结果 职责描述 职位概要 类似职位 Own end-to-end cybersecurity incident response Drive real impact on business risk 关于我们的客户 A prominent multilateral financial institution based in Asia, the organization focuses on supporting sustainable development and infrastructure investment across its member countries. We are currently looking for a Cybersecurity Operations & Incident Response Consultant to support the institution's Information Security team, focusing on security event monitoring, threat detection, and incident response activities.***Contractor形式合作,长期稳定,1年1签 职责描述 1. Cybersecurity Operations:Perform daily real time monitoring review and analysis of cybersecurity alerts/signals from multiple sources.Triage security incidents including social engineering attacks, malware, hacking, unauthorized access, data breach, business email compromise etc.Ensure incident documentation and handling is completed accurately within the case management system.Refine current use cases implemented on the security stack to reduce/minimize false positives.Create and maintain corresponding cybersecurity incident handling booksSupport the improvement of related cybersecurity operations technologies2. Digital Forensics and Incident Response:Act as a first point of contact for cybersecurity incidents escalated by the Managed Security Services vendor and take responsibility end-to-end for incident investigation and response activitiesConduct forensic analysis to determine cause and extent of breach (where applicable)Work together with various IT and business stakeholders to restore business operations with minimal impact efficiently.Recommend remediation/recovery plansPrepare timely, detailed and accurate incident report update3. Reporting:Participating in the development, editing and reviewing various IT Security reports such as weekly and monthly security reports, business supporting reports, regular cybersecurity reports, threat alerts etc.Provide post-incident reports for management and stakeholders encompassing easy to understand details on risk and impact, containment, remediation and threat actors etc.4. Other agreed cybersecurity related assignmentPerforms other duties and responsibilities as assigned or required. 理想的求职者 REQUIRED QUALIFICATION AND EXPERIENCEProven domain expertise in cyber defense with intensive hands-on experience.Knowledge of security protection for digital workspace, hybrid cloud and business applications such Microsoft 365, Azure, AWS etc.Knowledge of security and monitoring products such as firewall, EDR, IDS/IPS, Sandbox, Anti-Malware, SIEM, DLP, etc.Familiar with popular operating systems such as Windows, Linux, macOS, etc.Bachelor's degree or higher in Computer Science, Information Technology, Computer Programming, Information Security, etc. Equivalent combination of education and experience is acceptable.Familiar with programming or scripting languages such as Python, Power Shell, Unix Shell, SQL etc. is a plus.At least three (3) years' experience in cyber security operations, digital forensics and incident response and/or cyber security engineering.Excellent problem-solving and analytical skills, with the ability to quickly identify security issues and propose security solutions.Self-starter with the ability to work both independently and as a team player.Must be able to write thorough, concise, and user-friendly documentation in English.Strong interpersonal communication skills in English, both verbal and written. 薪酬待遇 Long-term role starts from 1-year contractGlobal exposureReal incident ownershipCritical decision-making 联系 Hao Zheng 职位编号 JN-062026-7029463 联系电话 +86 10 5969 0622 职位概要 职位类别 科技 子类别 安全 行业 金融服务 地区 北京市 工作类型 灵活 顾问名字 Hao Zheng 顾问电话号码 +86 10 5969 0622 职位编号 JN-062026-7029463
