Cyber Incident Response Analyst - Brno
You will work as part of our L3 incident response team and be responsible to help remediate complex cybersecurity incidents that span multiple service towers. You will help coordinate globally with multiple teams to defend Honeywell from cyber-attacks.
This position allows deep insight into various aspects of cyber security and will require attention to detail, a sense of urgency, and strong communication skills.
Role Key Responsibilities:
Participate on a team of highly skilled cybersecurity incident responders.; Build and maintain processes and procedures.
Assist with driving complex cybersecurity incidents to successful conclusion; Understand root causes of cybersecurity incidents. Perform initial analysis, identification, and remediation of network intrusions, application attacks, and computer system compromises.
Help mentor junior analysts in our L1 and L2 teams to help build a pipeline of talent that flows into L3.
Constantly optimize work procedures and automate recurring tasks. Develop and update technical documentation and formulate work instructions to address repeating issues.
Collaborate with global team members based in the Europe, India and US.; Participate in global on-call rotation.
Key Experience & Capabilities:
Bachelor’s degree in Cybersecurity, Computer Science, or equivalent experience.
2+ years of experience in Information Security or Information Technology fields in a cybersecurity role.
Experience with SIEM and EDR solutions.
Good technical knowledge of Windows/Linux operating systems, various types of applications, and networking technologies.
Analytical skills in threat, vulnerability, and intrusion detection analysis.; Keen understanding of threat vectors as well as exfiltration techniques.; Ability to develop and follow complex work instructions and documentation.
We value:
Experience with SOAR Solutions like XSOAR/Demisto and knowledge of scripting in Python or PowerShell.
Knowledge in cloud security (Azure, AWS, MS Office 365).
Knowledge of Linux operating system.
One or more widely recognized certifications from renowned institutions such as GIAC/SANS, ISC/CISSP or Microsoft.
Detailed knowledge of Endpoint Detection and Response tools (e.g., Carbon Black or MS Defender ATP).
Understanding of ITIL process, such as Incidents, Change & Problem management.
Our offer:
A culture that fosters inclusion, diversity, and innovation in an international work environment.
Market specific training and ongoing personal development.
Experienced leaders to support your professional development.
Extra-week of holiday, semi-flexible working hours.
Benefit portfolio including meal allowance, pension insurance, Benefit Plus Cafeteria program, discounted phone tariff, Multisport card for free or discounted access to sports and leisure facilities, global partnership, and discounts and more.
Additional Information - JOB ID: HRD229101
- Category: Engineering
- Location: Turanka 1387/100,Brno,BRNO-MĚSTO,62700,Czech Republic
- Exempt