Lucid Technologies Inc
The Logical Solutions
Enterprise Security Incident Manager Lead - Remote
Enterprise Security Incident Manager/Lead
Location: Remote.
Eastern, Central and Mountain time zones.
US Citizenship is Required -
Ability to pass enhanced background screen (criminal, financial, drug) for Public Trust clearance.
Target Rate (Fully burdened): Month. FIXED FIRM PER MONTH
Description:
This role will report to the contract Information Security Manager and work directly with the AVP for SecOps/GRC group within TSD for the TWAI engagement.
The Enterprise Security Incident Manager/Lead will work to develop a common approach to Security Incident handling across the enterprise, coordinating efforts, and managing the incident calls and/or process as necessary to address events in accordance with established policies and standards.
Technical Skills and product knowledge requirements:
Undergraduate degree in Computer Science, Engineering, Business or related field or equivalent work experience.
3-5 years' experience in Incident Response/Management.
Security certifications desired (CISSP, GCIH, other).
Cloud certifications desired (CCSP, AWS Cloud Practitioner, other).
Knowledge of NIST SP 800-53 security controls, focused on Incident Response (IR) Control Family.
Proficient with MS Office: Word, Excel, Outlook and PowerPoint
Critical thinking skills.
Excellent written and verbal communications skills.
Qualifications / Responsibilities:
Review existing Security Incident Response and Incident Handling process and procedures across multiple security boundaries for infrastructure (Cloud, On-Premise and Hybrid) and hosted applications to identify commonalities and gaps in best practices throughout the enterprise.
Document existing IR/IM processes to determine unique needs and common practices across the various information systems and applications.
Produce recommendations for standard enterprise wide IR/IM processes and procedures to be adopted.
Provide consultative services to the various enterprise information systems and application owners on newly defined IR/IH standards for adoption and best practices in perform IR/IM defined standards.
Develop and present training as needed for IR/IM processes to the enterprise.
Participate in Table Top exercises (TTX) to enforce training provided for IR/IM established processes for gap analysis and process familiarization for enterprise incident responders.
Review existing tool sets involved in IR/IM processes for potential upgrades, retooling or replacement regardless of enterprise locations and platforms.
Develop IR/IM playbooks based on most common events (DDoS, Malware, etc.)
Prepare and give presentations as required.
Prepare written documentation as required.
Run the Security Incidents plays.
Train a minimum of two additional personnel to run calls for backup in primary absence.
Thanks & Regards,
Vamshi Krishna Billa
Sr IT Recruiter
Lucid Technologies Inc
O: 214-385-4144 Ext: 206 (Pick me up i make you money)
E: Vamshi@lucidtechinc.com
F: 214-889-5857¬¬¬
W: www.LucidTechINC.com
Supplier Registration: https://lucidtechinc.com/supplierregistration