Apply on Employer Site

TP · 2 weeks ago

Cybersecurity Incident Response Analyst

European Union

Full-time

Onsite

Entry, Mid Level

TP is looking for a qualified Cyber Security Incident Responder who will be responsible for providing effective security monitoring and incident response through triage, investigation, communication, and reporting. The role involves using various tools to triage and investigate events to identify potential security incidents, while having a strong comprehension of malware, emerging threats, and risk analysis.

CRMCustomer ServiceOutsourcingTechnical Support

Growth Opportunities

H1B Sponsor Likely

Responsibilities

The Cyber Incident Responder will continuously provide monitoring and analysis of systems to identify suspected malicious or unauthorized activity across EMEA infrastructure

Provide first level response for security events including but not limited to intrusion detection, malware infections, denial of service attacks, privileged account misuse and network breaches

Provide event management that includes triage, correlation and enrichment of individual events to either rule out as false positive, trigger standard detective and corrective responses, or escalating as a security incident

Ensure that all IRT tickets are handled and resolved within SLA

Develops focused reporting and briefings for advanced cyber threats and activity to various teams and leaders

Qualification

SIEMEDRNetwork technologiesLog reviewAnalysisSOAR technologyAnalytical expertiseCurious investigative mindInformation security interestCommunication skillsCritical thinkingDecision-making skills

Required

Proficiency with Log review and analysis, logical thinking and ability to correlate events

Ability to triage events, demonstrate analytical expertise, close attention to detail, excellent critical thinking, logic, and solution orientation and to learn and adapt quickly

Have strong verbal and written communication and good listening skills

Has a sense of diplomacy and decision-making skills to handle the often fast-paced role of an incident handler

Prior experience with SIEM, EDR, Network technologies (Firewalls, Proxies, IPS)

Understanding of working in a 24/7/365 SOC environment

Candidate should possess a curious investigative mind, an interest in information security, and new & innovative technologies

Preferred

Knowledge of SOAR technology and workflows

Prior experience working with in the following areas: Computer Incident Response Team (CIRT), Computer Security Incident Response Center (CSIRC), Security Operations Center (SOC)

Industry certification such as the following: Security+, CEH, SANS (GCIH, GPEN, GWAT, GXPN, GCFA, GCFE, GREM)

Bachelor's

Benefits

Individual trainings/certifications budget

Company

TP

Glassdoor4.2

TP is a global digital business services company.

Founded in 2018

Sheridan, Wyoming, USA

10001+ employees

https://www.tp.com/en-us/

H1B Sponsorship

TP has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (1)