Lead Incident Response Specialist
Teradata

Job Info

---

*Incident Response Specialist*

As the Lead Incident Response Specialist, you will collaborate across business units to execute incident handling best practices with direct response to security incidents and investigations. Reporting to the head of the Incident Response and Investigations practice, the Lead Incident Response Specialist will focus on cyber incident response and forensic investigations. In addition, this role will assist in the development and enhancement of the existing processes and procedures for gathering, handling, searching, retrieving, digital and/or physical evidence involved with cyber security incidents.

*What's in it for you?*

This is an excellent opportunity to join a global, multi-billion dollar per year leader in data and analytics, working with the top companies in their industries. Teradata offers first-rate compensation and benefits that include unlimited PTO, matching 401(k), employee stock purchase plan, medical and dental insurances, and much more. Apply now to take the best next step in your career. While we would prefer to fill the position in San Diego, we are open to considering other locations at this time.

*Responsibilities:*


* Experience with designing and implementing incident response processes, to include conducting tabletop exercises
* End to end responsibility for the management, communication, escalation, investigation and resolution of information security incidents
* Conduct forensics on endpoints and network data, malware and log analysis to identify, contain and remediate incidents in the environment.
* Collect, process, and analyze electronically stored information (ESI) obtained from network, cloud, and end-user digital sources in accordance with industry and legal standards.
* Recognize attacker tools, tactics and procedures (TTPs) and indicators of compromise (IOCs) to mature the security posture of the company.
* Maintain and recommend changes or improvements to the Security Incident Response Plan.
* Mentor team members in incident response capabilities.

*Requirements:*


* Ability to clearly document in writing and effectively communicate the findings, opinions, and recommendations to both technical and non-technical audiences.
* Bachelor's degree in Information Security or related field. Equivalent experience or certification (CISSP, CCSP, CEH, PMP, GCIH, GSEC) also acceptable.
* 10+ years of demonstrated experience in information security.
* 3+ years in a position handling Incident Response and forensics
* Experience with security technologies such as EDR, AV, firewalls, IPS/IDS, etc.

This job has expired.