Beschreibung
A Swiss insurance company is looking for an IT Security Engineer to build-up the cyber incident detection and response capabilities in the IT Service Coordination organization.Workload: 100%
Start Date: asap
End Date: 31.12.2018
Workplace: Zurich
Reference Number: 4333
Tasks:
• Identify, analyze and describe use-cases for incident detection in the cyber security area, which are typically not in scope of individual IT service providers.
• For each relevant use-case, analyze the available information (logs and events), develop an incident detection strategy and evaluate its feasibility.
• For each incident detection strategy, document in detail the required information sources as well as the exact matching rules, respectively patterns ofinterest.
• In close collaboration with the IT service owners, the Security Engineering & Cyber Defense team. implement the specified incident detection strategies, in order to enable the IT Service Coordination organization to be automatically alerted about the appearance of the predefined patterns in near-real-time.
• Document RunBooks for the IT Service Coordination organization to respond to alerts on predefined use-cases in an appropriate manner, which includes procedures to collect evidence, to perform a first analysis, to distinguish false positive findings from true incidents and for how to either contain the incident, or how to escalate the incident.
• Train and test the IT Service Coordination organization on the use-cases to be performed.
Requirements:
• Certified Information Systems Security Professional (CISSP), or equivalent.
• Deep understanding of cloud related security concepts.
• Hands-on experience in building-up a SIEM with ELK.
• Experience with statistical data analysis.
• Understand complex technology stacks and their dependencies.
• Understand security as well as operational requirements and translate them into technical solutions.
Soft Skills:
• Self-motivated and highly proactive attitude.
• Work in a global company with people having different cultural backgrounds.
• Appear as professional and communicate target group related.
• Assume responsibility and drive projects autonomously.
• Excellent verbal and oral communication skills (in English).