Cyber Security Incident Responder #112684

  • Competitive
  • Singapur, Singapore Singapur Singapore SG
  • Festanstellung, Vollzeit
  • Credit Suisse Asia
  • 23 Jun 18 2018-06-23

Cyber Security Incident Responder #112684

We Offer

  • An exciting and challenging role at the forefront of protecting and defending information assets against cyberattacks and threats affecting Credit Suisse AG.
  • Responsibility to contribute positively to the Threat Detection and Response service, working as a member of the Cyber Security Incident Response Team (CSIRT).
  • A position where you can apply your expertise in responding to information security incidents, threats and issues which involve:
    • Coordinating and handling Cyber incidents, including the engagement of other teams and partners through containment, eradication and recovery.
    • Analysing log and other data sources to investigate the nature of an incident or investigation, establishing the impact, root cause and indicators of compromise.
    • Searches using indicators of compromise to identify and discover other affected assets.
    • Conducting Digital Forensics Incident Response (DFIR) activities to remotely triage and analyse systems.
    • Analysing malware, including static and dynamic analysis.
  • Access to a lab environment with equipment, platforms and applications to perform some of your specialist duties and tasks.
  • Collaboration with Cyber Security Operations teams such as the Security Operations Center, Cyber Threat Intelligence, Threat Defence, Security Analytics and Vulnerability Management.
  • The responsibility to continuously develop and improve operations by identifying lessons learnt and improvement plans that ensure we operate an effective and efficient service.
  • Support for you to contribute to security projects driven by regulatory or internal requirements.
efc-ags1

You Offer
  • You possess a Graduate Degree or equivalent education in Information Technology or Computer Science.
  • As an ideal aspirant, you have the following:
    • One or more technical certifications: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Certified Forensic Examiner (GCFE), or other equivalent technical certifications.
    • 3+ years of professional experience in cybersecurity operations, incident handling, digital forensics and/or malware analysis.
    • Prior experience in Digital Forensics Incident Response (DFIR) or malware analysis.
  • You have working knowledge of hacking, malware and adversary tactics, technics, procedures and how they apply to intelligence driven defence.
  • You have demonstrable knowledge in network protocols, including TCP/IP, operating systems (Windows and Unix) and scripting languages (such as Python, Perl, Bash, PowerShell).
  • You have experience using and managing with security products such as antivirus, IDS, IPS, firewalls, proxy, SIEM, log management and Splunk.
  • You have advantageous, although not essential, experience with network or application penetration testing, exploit writing or participation in red team exercises.
  • Knowledge and familiarity with enterprise architecture and networks, virtualisation and cloud technologies
  • Evidence collection and management knowledge, including chain of custody
  • An understanding of Swiss banking secrecy and EU data protection and privacy themes commonly encountered during incidents and investigation
  • Diligence and attention to detail for reaching correct conclusions and results
  • Recognition of the importance of procedures as they relate to your work and our functions objectives
  • The capacity to seek creative and alternate solutions obstacles to problematic situations
  • High moral beliefs and operate to high ethical standards
  • The ability to work under pressure, at times in stressful and high stress situations.
  • Excellent analytical, problem evaluation and solving.
  • Willingness to learn and develop yourself continuously
  • Good communication, documentation and record keeping skills
  • Fluency in English, with German and/or French an advantage because the team provides global services to partners including many based in Switzerland that results in German/French being useful.