索尼影视娱乐招聘:Regional Incident Response Manager(中文为优势)

<- 分享“IDEABOXES”微信公众号到您的社交圈,让更多的人知道!

收藏文章 赞一个 已赞 2016-06-14 IDEABOXES



坐标:伦敦

公司:Sony Pictures

职位:Regional Incident Response Manager

性质:Full-time

申请方式:阅读原文,点击链接申请。(如果链接打不开,请联系小编哟)



Job Description

Sony Pictures Entertainment’s London based Information Security team are currently looking for a Regional Incident Response Manager to join their team and be responsible for handling incident response duties and driving initiatives.

The Regional Incident Response Manager will conduct advanced computer and network forensic investigations relating to various forms of malware, computer intrusion, theft of information, denial of service, data breaches, and other incidents.

This role will work with the Security Operation Centre to rapidly assess, remedy, and/or refer incidents to proper resolution, as well as IT and other departments to identify root cause and develop corrective and preventive measures.

Additionally this position will work with threat assessment peers to identify and make recommendations to the Incident Response Executive Director to improve the security stance and incident response capabilities of the organization.



Core Responsibilities

  • Function as an incident response handler, directing IT and other departments during security incidents, including evidence preservation, corrective action, and preventive actions

  • Conduct advanced computer and network forensic investigations relating to various forms of malware, computer intrusion, theft of information, denial of service, databreaches, etc.

  • Assist in identifying and remediating gaps as identified throughout the investigation

  • Maintain technical knowledge within areas of expertise via formal training and self-education

  • Perform basic programming and develop scripts in support of the Incident Response and Threat Analysis team

  • Design, document, and implement incident response processes, procedures, guidelines, and solutions

  • Responsible for technical and executive level reports on incident response issues

  • Some travel may be required within region and to the home office in Los Angeles, California, United States



Additional Responsibilities

  • Engaging with business stakeholders to understand business practices; gathering and facilitating the convergence of business, technical and security requirements; liaising with IT to align the environment with existing and future requirements

  • Collaborating with IT to ensure security is factored into the evaluation, selection, installation and configuration of hardware, applications and software; researching technologies and identifying differentiators and integration challenges; providing technical and managerial expertise on maintenance and administration aspects

  • Providing support and guidance on legal and regulatory compliance including data privacy

  • Tracking, reporting, and coordinating the remediation of security vulnerabilities

  • Work closely with the regional Info Security team and respond to tasks from the regional Info Sec lead



Functional Knowledge Of

  • Host and network forensic tools and techniques

  • Information security, client / server architectures, and networking

  • Current and evolving cyber threat landscape

  • Threat intelligence and applied use within incident response and forensic investigations

  • Malware analysis and understanding attack techniques

  • Interpreting, searching, and manipulating data within enterprise logging solutions

  • Working with network, host, and user activity data, and identifying anomalies

  • Programming and scripting to support data analysis and simple tool development

  • Vulnerability Management



Preferred Technical / Certification Requirements

  • Information Security certification (CISSP, CISM, etc.)

  • Incident and Forensic Security certification (GIAC GCIA  / GCIH)

  • Ethical hacking certifications (CEH, etc.)



Required Experience

  • Bachelor’s degree or equivalent working experience



Preferred
  • Typically 5-7 years of overall information security experience

  • Typically 3-5 years of incident response experience

  • Typically 1-2 years of forensic / malware experience

  • Typically 1-2 years of SIEM / IDS / IPS / PCAP analysis experience

  • Typically 1-2 years of cyber threat tracking

  • Typically 1-2 years of Vulnerability management and/or analysis

  • Other Preferred Technology Knowledge / Skills / Abilities



Knowledge Of

  • Hacker techniques, tools, and motivations

  • Operating systems (Windows, OS X, Linux and UNIX)

  • Multilayer security architectures and controls

  • Application architecture (mainframes, databases, web, middleware, virtual)

  • Network architecture (firewalls, routers, switches and load balancers)

  • Security technologies (IDS/IPS, advanced endpoint protection, AV)



Experience In

  • Analyzing file system images, memory images and network packet captures

  • Using commercial and open source security testing / vulnerability analysis tools

  • Problem solving with missing information while under pressure with short deadlines

  • Dynamic malware analysis and indicator extraction

  • Indicator pivoting, tracking and analysis

  • Ability to prioritize multiple tasks rapidly, formulate a plan, respond quickly and communicate with customers and leadership

  • Generating both technical and executive reports and briefings



Skills

  • Programming in one or more of the following: C, C++, C#, Java, .NET, SQL, Python, ASM

  • Shell scripting in one or more of the following: Perl, Bash, PHP, WMI, PowerShell

  • Reviewing application source code for security vulnerabilities

  • Using debuggers and/or de-compilers

  • Reverse engineering complex code, using tools such as IDA Pro, OllyDBG and othe rsimilar tools

  • Bilingual speaking and writing skills (Japanese, Chinese, Spanish, etc.)



Ability To

  • Take on new responsibilities and influence others as needed to deliver consistent results

  • Strong verbal communications skills and concise written communication skills

  • Strong organizational and multi-tasking skills

  • Pick up new skills through self-learning and on the job training

  • Innovate and stay current on security technologies

  • Attention to detail with flexibility in addressing changing requirements





免责申明:本文观点并不代表IDEABOXES LIMITED立场。更多的工作相关细节,请与雇主直接联系会更有效率哟!谢谢大家一如既往的支持!


关于IDEABOXESUK


IDEABOXESUK是一家made in London的职业咨询猎头公司。致力于帮咱华人在英国找到自己的career path。在这里,周一至周日,我们会分享英国华人的工作资讯和英国职场的各种事儿


我们旨在创造三赢局面,相信我,您不会失望。也请不要走开,因为这个平台需要与您一起携手!我们的梦想是建立一个英国最大最正规的职业平台,让每一个在英华人都有职场归属感。

嘘!我知道我们现在力量还很微薄,也有很多不足,可是梦想还是要有的!说不定通过努力就能实现呢!您说呢?期待您的关注与指导!更多详情及信息可登录ideaboxesuk官方网站http://www.ideaboxes.co.uk获取。


点击展开全文