Incident Handler Cover Letter

I would like to submit my application for the incident handler opening. Please accept this letter and the attached resume.

Previously, I was responsible for advanced traffic analysis (at the packet level) and reconstruction of network traffic to discover anomalies, trends and patterns.

My experience is an excellent fit for the list of requirements in this job:

• Incident handling process experience
• Detecting malicious applications and network activity
• Common attack techniques that compromise hosts
• Detecting and analyzing system and network vulnerabilities
• Continuous process improvement by discovering the root causes of incidents​​​​​​​​​​​​​​​​​​​​​
• In-depth knowledge of Offensive techniques
• Organizational and communication skills ( oral and written
• Ensure adherence to IT security policies and procedures

I would like to submit my application for the incident handler opening. Please accept this letter and the attached resume.

In my previous role, I was responsible for leadership and high level CSOC Security Support managing cyber and network sensor activity.

Please consider my experience and qualifications for this position:

• Experience with analyzing malware and network attacks
• Experience providing security services for customers working with HIPAA regulated data and systems
• Familiarity with information security best practices, related laws and regulation relevant to information security
• Experience Providing IT services in higher education
• Formal training in law enforcement forensics science training and/or hands on investigations and/or experience serving as a law enforcement officer (LEO)
• Broad knowledge of IT and Information Security technologies, operating systems, databases and applications
• Previous experience in a SOC or CERT team is considered a strong benefit
• Previous experience in development or operation of a SIEM considered an asset

Please consider me for the incident handler opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for solid technical expertise to support Business Response Teams including the forensic analysis of network traffic, network packets and log files.

Please consider my qualifications and experience:

• Familiar with ITIL service management methodology
• Relevant information security certifications, such as CISSP, SANS GCIA, SANS GCIH, SANS GPEN, SANS GCFA, Offensive Security OSCP
• Experience in the evaluation of new technology and security threats as they arise
• Familiarity with information security best practices and related laws
• Familiarity with law and regulation relevant to information security
• A high level of integrity, excellent judgment and knowledge concerning issues of privacy
• Creativity to recognize and address new threats and security challenges as they arise
• Industry certifications such as CEH, CISA, Security + are desirable.Experience work as part of a SOC or CSIRT team is desirable

Please consider me for the incident handler opportunity. I am including my resume that lists my qualifications and experience.

In my previous role, I was responsible for technical expertise to support business unit security teams including the understanding of forensic analysis of network traffic, network packets and log files.

Please consider my experience and qualifications for this position:

• Hands on experience with security tools, such as, Encase, Splunk, network forensic and capture tools, CarbonBlack, Tanium.Good written and verbal communications skills
• Industry certifications such as GCIH, GREM, GCFA, GCFE, CISSP, CEH, CISA, Security + are desirable
• The investigative response mission
• Perform memory analysis
• Relevant security certifications (CISSP and GCIA or GCIH)
• Operating systems knowledge and systems administration skills for various flavors of Linux/UNIX, Windows and other operating systems
• Experience providing information security related services and support for cloud services such as Office 365, AWS and/or other cloud services
• Handling security incidents and response in a large multi-platform environment

Please consider me for the incident handler opportunity. I am including my resume that lists my qualifications and experience.

In my previous role, I was responsible for technical support in response to network transport incidents and; proficient in identifying network incident root causes and information necessary to determine root cause.

My experience is an excellent fit for the list of requirements in this job:

• Information security related disciplines are preferred
• Professional experience providing information security related services and functions
• Systems administration for various flavors of Linux/UNIX, Windows and other operating systems
• Experience with security incident response, handling and forensic analysis
• Knowledge of TCP/IP communications, common protocols and applications related to network level
• Experience managing common types of security incident, , application or OS compromise, endpoint compromise, internal and external data exposure
• Familiarity with common threats and issues leading to security incidents, , common forms of malware, credential phishing, "drive by" host compromises, internal data spillage events, and inadvertent data leaks
• Host forensics skills, including collecting and analysing system artifacts (file system, memory, running processes, network connections) to assess potential compromise