W.R. Rosato & associates, llc CONTACT US

Manager Security Monitoring Incident Response

Manager, Security Monitoring and Incident Response

 

Responsibilities:

 

  • Proactively hunt, monitor for and respond to security incidents, as well as perform personnel investigations.
  • Monitor for external threats, assessing risk to the environment and driving risk mitigation and response activities.
  • Identify and incorporate threat intelligence into monitoring tools and incident response processes.
  • Balance / optimize MSSP services with in-house monitoring and detection capabilities to effectively leverage capabilities.  Integrate where possible.
  • Define, document, test and manage incident response processes.  Mature and integrate processes and technologies, with the objective of the continued development of a “single plane of glass” for monitoring and comprehensive incident response process.
  • Stay abreast of the latest information security controls, practices, techniques and capabilities in the marketplace.  Lead internal skills development activities for information security personnel on the topic of security monitoring and incident response, by providing mentoring and by conducting knowledge sharing sessions.

 

Qualifications:

 

  • 5 years Progressive security monitoring experience, security operations, and incident response activities; preferably within a professional services firm or similar environment.
  • Ability to understand complex problems while formally presenting them simplistically. Ability to lead meetings, divide responsibilities, and influence people to take action to assist in the resolution of security incidents
  • Understanding of network, desktop and server technologies, including experience with network intrusion methods, network containment, and segregation techniques and technologies.  Examples of related technologies include Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS), Security information and event management (SIEM), endpoint forensic tools, proxies, etc.
  • Experience will malware analysis
  • Strong verbal/written communication, with ability to effectively interact with individuals at all levels of responsibility and authority.  Must be able to prioritize, delegate and foster the development of high performance teams to lead/support an environment driven by customer service and team work.
  • Strong trouble-shooting and organizational skills and ability to work on multiple projects simultaneously.  Ability to participate in resource planning processes based on defined organizational plans.
  • US Citizen
Apply Now