Security Incident Job Description
Security incident
provides subject matter expertise on secure coding practices and security design based on current knowledge of security threats and vulnerabilities that could impact the technology stack.
Security Incident Duties & Responsibilities
To write an effective security incident job description, begin by listing detailed duties, responsibilities and expectations. We have included security incident job description templates that you can modify and use.
Sample responsibilities for this position include:
Respond to security incidents that originate externally or from escalated internal sources
Develop tooling and capabilities to detect, investigate, and react to security incidents
Create procedural run books for a variety of security incident types, and update existing run books for changes
Navigate the established procedure for incident response, and developing it further to react to new threats
Coordinate with multiple organizations in addressing security incidents while communicating clearly in email, artifacts, and meetings
Review alerts from MSSP provider from internal monitoring tools
Manage a team (internal and outsourced resources) of security engineers achieving optimal use of staff and resources towards planning, development, implementation and maintenance of all Information & Content Security technologies related to the secure operation of production, post-production, game and web systems and services
Windows, Unix, Web security vulnerability assessments and penetration testing
Integrating security controls into new systems
Programming tools using C, C++, Perl, Unix Shell Scripts
Security Incident Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Incident
List any licenses or certifications required by the position: GIAC, SANS, ITIL, CISSP, GCIH, GCIA, PM, GCED, BSP, CISA
Education for Security Incident
Typically a job would require a certain level of education.
Employers hiring for the security incident job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Information Security, Education, Engineering, Information Technology, Technical, Information Systems, Computer Engineering, Management, Technology
Skills for Security Incident
Desired skills for security incident include:
HTTP
Linux
TCP/IP
Chain of custody process and properly securing evidence
Operational security tools and practices
FTP
DNS
Microsoft Office
Current advanced adversary TTP’s and experience responding to ATP attacks
Current security threats and vulnerabilities
Desired experience for security incident includes:
Strong security background such as understanding risk assessment, legal and regulatory requirements, threats, vulnerabilities, security policies
Broad knowledge and proven experience in incident handling and incident response methodologies
Experience in scripting languages, software vulnerabilities, hacking techniques, exploits, malware, forensics and/or reverse engineering
Excellent knowledge of network security technology and various detection, analysis, troubleshooting and configuration control tools
5+ years working in the computer/network security
Expertise in detecting, containing, and remediating a variety of security incident types
Security Incident Examples
1
Security Incident Job Description
Job Description Example
Our innovative and growing company is searching for experienced candidates for the position of security incident. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security incident
- Proactively manage security systems and services to provide best-in-class quality service and performance, acting as the escalation point during security incidents and facilitating timely issue resolution
- Responsible for the security of system and network infrastructure
- Communicate appropriately with internal and external clients
- Participate in projects, planning, controlling, executing and closing assigned tasks of the project to produce the required deliverables
- Collaborate with other WB Technical Operations groups in the architecture design, development and security of new production, post-production, on-line and mobile game, web service, server and network infrastructure
- Leads staff and status meetings
- Keeps operations/project team well informed of changes regarding status of assigned tasks
- Effectively communicates relevant information to superiors
- Manage and develop the Security Operations program, strategy, policies and processes
- Keep current with new developments in the security industry including advisories, malware, vulnerabilities and viruses
Qualifications for security incident
- Preferable to have 7-10 years of security experience in a technical role, mainly in the area of Intrusion Detection Systems, Platform and/or Network security
- Expertise in computer and network forensics
- Develop capabilities, tooling, and scripts in python
- Threat-centric analysis and attacker modeling
- Java & JavaRx
- Security certifications such as E|CIH, GCIH, CISSP or equivalent
2
Security Incident Job Description
Job Description Example
Our innovative and growing company is looking for a security incident. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for security incident
- Document all actions related to CSIRT activity in support of regular reporting
- Provide live guidance and instruction to IT and Technology employees, contractors and agents involved in working on an incident
- Directs analyses and root cause identification
- Performing post-mortem process and reviews
- Monitor company networks for security potential breaches or suspicious activities
- Follow up with appropriate parties to manage security incidents to closure
- Integrate threat intelligence feeds
- Assist with the development of security standards and best practices
- Recommend security enhancements to management or senior Information Security staff
- Provide up to tier-three SME escalation support to the Service Desk for security related issues
Qualifications for security incident
- Expertise in your favorite language, familiarity with Python for group projects
- Analyze gaps, architect solutions, program solutions by oneself or in a small team
- Security Intelligence methodologies and tools (CRITS and Maltego are a plus)
- Big Data experience (Hive, Hadoop, Pig, Presto, Elastic Search are all a plus)
- Forensics experience (disk/memory/network forensics and malware reversing are all a plus)
- At least Diploma graduate in Computer Science/Information Technology or equivalent work experience in Information Security
3
Security Incident Job Description
Job Description Example
Our innovative and growing company is hiring for a security incident. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for security incident
- Examples of incidents involve unauthorized access, denial of service, malware containment, eradication, and analysis
- Conduct incident and investigations post-mortem briefings, analysis, and reporting as required
- Research and stay current on the latest trends, best practices, and technology developments
- Incident lifecycle management from identification through triage and containment
- Design reports to predefined parameters to identify events of interest to the customer
- Improve our incident response processes and procedures
- Mentor and develop the team members on our incident response team
- The candidate will need to have sound, broad security and technical knowledge excellent communication and coordination skills, working fluently in English
- Provide input into policies, standards and procedures
- Maintain assigned systems to ensure availability, reliability, integrity, including the oversight of current and projected capacity, performance, and licensing
Qualifications for security incident
- Bachelor’s Degree in computer science/engineering is preferred, or a bachelor’s degree and related experience
- CISSP or equivalent required
- Security certification required (CISSP, GCIH, GPEN, GWAPT, GCIA, GCUX or comparable)
- Prefer candidate who has managed content security engineers supporting production, post-production, on-line and mobile gaming and large, distributed online server facilities
- Expert level skills in computer science, information security, incident response, vulnerability management and penetration testing are required
- Expert level skills in network and system forensics on Unix operating systems and IP networks
4
Security Incident Job Description
Job Description Example
Our company is growing rapidly and is hiring for a security incident. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for security incident
- Conduct forensic investigations including physical/logical disk and memory examinations
- Correlate threat intelligence with active attacks and vulnerabilities within the enterprise
- Interface effectively in key relationships, including IT peers
- Engage, drive, or participate in the Service Management incident response process to drive containment, eradication, and restoration for small security threats
- Recommend improvements to or rewrite the Incident Response Playbooks
- Provide audit data when requested
- Provide investigation data for trending & intel reports
- Process and complete tickets related to security operations
- Scope assigned deals to be relevant on the market but also to drive expected margin
- Responsible for Delivery driving an excellent balance of Project Margin and Customer Satisfaction
Qualifications for security incident
- Experience with production and post production digital media systems and services
- Experience with on-line and mobile gaming systems
- Some familiarity with Windows system administration are required, particularly Windows 2000 Server, Windows Server 2003, Windows Server 2008, Active Directory and GPO
- Must be willing to be on-call for off-hour work related problems/requests
- Degree in Computer Science/Information Technology or equivalent work experience in Information Security
- Experience in crisis management planning is preferred
5
Security Incident Job Description
Job Description Example
Our innovative and growing company is looking for a security incident. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for security incident
- Perform highly technical duties including system analysis, malware analysis, indicator extraction, signature development, and network traffic analysis
- Monitor all SRC, National NOCs and Local Management Centers events to identify security issues or respond to automated event identification
- Perform configuration updates, such as modifying configurations, signature definitions or implementing new policies, as directed
- Respond to security incidents and report on incident handling and resolution including documenting Incident reports for senior management
- Be able to leverage other network management tools in the identification and response to security incidents and faults
- Assist with daily virus, vulnerability and exploit assessment review and development as necessary
- Assist with security audits to verify completeness of security required configurations and verify system hardening
- Train new SRC personnel in department monitoring and escalation procedures
- Develop and update the department's Situational Awareness Dashboard
- Refine, validate and exercise our Incident Response Plan
Qualifications for security incident
- Excellent verbal and written communications skills will be key to succeed in this role a you will be working with internal and external clients globally
- Requires a BA/BS degree in Computer Science, Information Systems Management, Mathematics, Operations Research, Statistics, Engineering or relevant technical discipline
- Strong technical understanding of the information security threat landscape (attack vectors and tools, best practices for securing systems and networks)
- J4 &nash
- Experience or keen interest in IT Infrastructure/network security
- Experience or keen interest in IT Security-related standards and technologies