DESCRIPTION
* Maintain and develop Incident Response Plans and that describe in great detail how the company should respond to a scenario.
* Lead planning for training simulation and table-top exercises to maintain Incident Response readiness.
* Report, investigate and resolve cyber security incidents.
* Recommend and implement changes to enhance system security and prevent unauthorized access.
* Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.
* Partner with Corporate Emergency Response Team to integrate the enterprise-wide response process into the Cyber Incident Response process.
* Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and web-based security.
* Educate and communicate security requirements and procedures to all users and new employees.
* Conduct vulnerability assessments and monitor systems, network, databases and Web for system vulnerabilities.
* Ensure compliance with regulations and privacy laws.
* May oversee internal or external systems security (i.e. cloud services).
The ideal candidate possesses a minimum of four of the below experience items (ranked in order of importance):
* Experience with people-coordination or project management efforts involving more than 10 individuals (Required);
* Experience with writing technical documentation and maintaining planning documents (Required);
* Experience with Cyber Security Incident Response;
* Experience in a Security Operations Center environment;
* Critical infrastructure and/or airline experience;
* Experience in Airline System Operations.
* At least 1 year of System Administrator experience supporting a SAAS system and implementing complex changes following the SDLC.
Preferred Knowledge & Skills:
* Ability to manage complex projects that include cross-functional teams;
* Masterful interpersonal communications and relationship skills;
* Creative problem solving and time management skills;
* Technical writing and documentation;
* Ability to remain calm under pressure;
* Ability to translate complex threat and incident information into information understandable by a layperson.
* Knowledge of or experience with business continuity processes and concepts.
* CISSP, GSEC, or SANS Security Certifications preferred but not required.
24/7 emergency on-call required;
Open to non-local candidates via Skype interview, but final interview will need to be in person (due to these we will only bring in non-local candidates for an in person interview if we are certain they are a good fit).
•
Last updated on Nov 7, 2017