Job Description
Cyber Security Operations Incident Commander Location: Raritan, NJ or Remote Duration: 6+ months Job description: Responsibilities include but are not limited to: β’ In this role, as an Incident commander, you will be a decision maker during a major incident β’ Evaluates and ensures the resolution of technically sophisticated security issues, internal control issues, critical incidents and/or crisis resolution management β’ You will focus on creating and maintaining an incident action plan β’ Managing security incidents related to Pharmaceutical's 3rd party vendors and partners β’ Delegating tasks within the CSOC and collecting pertinent information from various data sources to support an investigation β’ Partnering with internal teams such Digital Command Center, DBRT, Privacy and legal as part of the greater Incident response process β’ Maintain knowledge of applicable Security Operations policies, regulations, and compliance documents specifically related to security β’ Establish and maintain relationships with the suppliers, vendors, and partners with federal agencies along with the overall information security industry β’ Provide actionable intelligence through written and verbal products to a diverse audience, including business partners, senior leaders, and security analysts Requirements: β’ A minimum of a bachelor's degree is required β’ A minimum of 5 years of Information Security/ IT Risk Management/IT experience with growing technical responsibilities β’ At least 3 years security operations experience is preferred β’ Knowledge, understanding of cloud technologies/services (Virtual Private/Hybrid Cloud, SaaS, IaaS, PaaS, DBaaS) and the appropriate logging, controls and processes to secure them is preferred β’ Experience with structured analysis techniques (Diamond Model, Cyber Kill Chain) as well as a proven understanding of the MITRE Telecommunication&CK framework is preferred β’ Experience with common operating systems, services, networking protocols, logging, attacker techniques and tools is preferred β’ A solid grasp of the current threat landscape including the latest tactics, tools, and procedures, common malware variants, and effective techniques for detecting this malicious activity is required β’ Superb interpersonal, verbal, and written communication skills are required β’ Security certifications such as CISSP, SANS GIAC CTI, GCFA, GNFA is preferred β’ Experience working with virtual, global teams - including diverse groups of people with multifaceted backgrounds and cultural experience is preferred β’ Ability to obtain and maintain a security clearance is required Remote Skills: Alliance/Partner Marketing, Biotech and Pharmaceutical, CISSP - Certified Information Systems Security Professional, Cloud Computing, Communication Skills, Computer Hacking, Computer Security, Computer Telephony Integration (CTI), Crisis Management, Federal Government, GCFA - GIAC Certified Forensic Analyst, GIAC - Global Information Assurance Certification, Hybrid Cloud, Incident Response, Information Technology & Information Systems, Information/Data Security (InfoSec), Infrastructure as a Service (IaaS), Internet Security, Interpersonal Skills, Legal, Malware, Network Protocols, Operating Systems, Platform as a Service (PaaS), Presentation/Verbal Skills, Private Cloud, Regulatory Compliance, Risk Management, Security Analysis, Security Clearance, Security Monitoring, Software as a Service (SaaS), Structured Analysis, Telecommunications, Vendor/Supplier Relations, Writing Skills About the Company: Georgia Tek Systems Apply tot his job