Info management d.o.o. - otvorena pozicija za Associate Incident Analyst, Dubai
Period projekta: 11 Meseci, Start 01. Juli
Krajnji rok za prijavu kandidata: 04.06.2012.
Tel: 063 652 725 Igor
[email protected]
www.infomanagement.co.rs
Skills and Roles and Responsibilities (not limited)
• Associate Incident Analyst ---
1. Responding to incidents escalated via agreed and identified channels.
2. Aiding and supporting other business units, e.g. fraud and HR, by carrying out investigations and providing advice as requested.
3. Containing incidents and preventing further impact on corporate assets.
4. Forensic analysis of compromised systems using sound forensic methods.
5. Root-cause analysis to determine which systems have been impacted and which systems may be exposed to identical incidents.
6. Collection, extraction and refinement of intelligence from various open and closed data sources to strengthen corporate security posture and to enable more rapid response to incidents.
7. Maintenance and monitoring of SIRT infrastructure, including, but not limited to, honeypots, malware analysis environments, sandboxes, centralized data and intelligence storage.
8. Automated and manual malware analysis.
9. Ensuring corporate AV-products are capable of detecting threats captured by honeypots by submitting samples to the AV-vendor.
10. Liaising with other teams as required by SLAs, e.g. to block/contain traffic, request retrieval of systems for analysis, request deployment of new AV-signatures, etc.
11. Maintenance and follow-up of agreed SLAs.
12. Developing, evaluating and testing new tools and methods to enable more efficient to threats and incidents to the corporate environment and customers.
13. Liasing with other incident response teams, nationally and internationally.
14. Wiping hard disks to purge sensitive data.
15. Scheduled and ad-hoc reporting to management and constituents.
16. Providing relevant information & work around solution to administrators & business units.
17. Knowledge base Management.
[Ovu poruku je menjao Info Management dana 02.06.2012. u 16:37 GMT+1]
 |  |
 |
