Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

CSIRT Consultant

T

Talan

CSIRT Consultant

New York, NY
Full Time
Paid
Similar Jobs
  • Responsibilities

    Job Description

    Are you looking to join a company at the forefront of innovation and transformation? Look no further than Talan!

    We are seeking a talented CSIRT Consultant to join our team and work on IT projects.

    As a member of our team, you will have the opportunity to work on cutting-edge technology and collaborate with a dynamic group of professionals who are dedicated to excellence. You will have the chance to contribute to the development of our Finance engineering team and grow your career in a stimulating environment.

    If you are a skilled Cybersecurity Specialist with a passion for finance and technology, we encourage you to apply for this exciting opportunity. Join us and take your career to the next level!

    _ Role and responsibilities_

    • Incident Detection and Response:
    * Identify, detect, and respond to various security incidents, including but not limited to DoS attacks, malware, phishing, and web attacks.
* Take immediate action to mitigate and resolve security incidents as they occur.
    • Security Incident Management:
    * Lead and drive end-to-end security incident response and resolution activities.
* Coordinate with IT Operations and other teams to ensure timely deployment of preventive and detective actions in response to security threats and intelligence alerts.
    • Forensics and Investigation:
    * Support and perform forensic investigations to respond to security incidents.
* Prepare detailed incident post-mortem reports, including root cause analysis, remediation steps, and lessons learned.
    • Threat Intelligence and Coordination:
    * Respond to security threats and intelligence alerts from Group CERT, regional regulators, and authorized threat intelligence groups.
* Manage the coordination, communication, and deployment of action plans for threat advisories and lessons learned from security incidents.
    • Policy and Playbook Development:
    * Develop, update, and periodically review the Incident Response Plan (IRP) and playbooks to ensure relevance and effectiveness.
* Maintain up-to-date information on all stakeholders involved in incident response.
    • Collaboration and Support:
    * Collaborate with CSIRT teams across different geographies on security matters.
* Act as a backup to manage security incidents and other security activities as needed.
    • Security Review and Vulnerability Management:
    * Conduct periodic reviews of network (switches, routers, firewalls, IPS, etc.) and system (Windows, Linux, etc.) security measures to support vulnerability management.
* Ensure the vulnerability remediation process is followed and meets the expected level of performance.
    • Compliance and Training:
    * Complete all mandatory training to maintain and enhance competence.
* Comply with all legal, regulatory, and internal compliance requirements, including financial security and fraud prevention measures.
    • Incident Exercises and Preparedness:
    * Organize and conduct annual "table-top incidents" exercises with management to test the effectiveness of incident response strategies.
    • Severe Incident Coordination:
    * In the event of a severe security incident, coordinate investigation, mitigation, and remediation operations with IT operations and application teams.
  • Qualifications

    Qualifications

    • Bachelor's degree in Computer Science, Information Security, or a related field.
    • Prior experience in a security operations or incident response role.
    • Strong knowledge of security threats, vulnerabilities, and attack vectors.
    • Experience with security technologies, including firewalls, intrusion detection systems, antivirus software, and SIEM (Security Information and Event Management) tools.
    • Proven experience in conducting forensic investigations and preparing incident reports.
    • Knowledge of regulatory requirements related to cybersecurity and data protection.
    • Strong analytical and problem-solving skills with attention to detail.
    • Excellent communication and coordination skills, with the ability to work effectively under pressure.
    • Relevant certifications such as CISSP, CISM, GIAC, CEH, or equivalent are preferred

    Preferred Skills:

    • Experience in coordinating with external regulatory bodies and threat intelligence groups.
    • Familiarity with security frameworks such as NIST, ISO 27001, and CIS Controls.
    • Knowledge of scripting and automation tools for incident response (Python, PowerShell, etc.).

    The salary range for this role is US$70,000 - US$140,000

    Company’s Benefits

    At Talan, we invest in our employees' well-being and empower them with benefits, including:

    • Competitive salary
    • 401(k) retirement plan with company matching
    • 15 days of paid vacation per year at hire and up to 27 according to seniority (annual untaken vacation days are cashed out)
    • 8 paid holidays + 5 sick days + 2 personal days per year
    • ❤️‍Company health, dental, and vision insurance plans + FSA
    • Voluntary STD and LTD
    • Commuter/transit benefits

    All your information will be kept confidential according to EEO guidelines.