The Impact You’ll Make in this Role
As the Cybersecurity Incident Responder, you will have the opportunity to tap into your curiosity and collaborate with some of the most innovative and diverse people around the world. Here, you will make an impact by:
- Serve as a primary point of contact for cyber security incidents, coordinating communication and collaboration with regional and global stakeholders.
- Lead investigations into security incidents to determine the root cause, scope, and impact of the incident.
- Collect intrusion artifacts (e.g., source code, malware, trojans) and use discovered data to enable mitigation of potential cyber defense incidents in GCA region.
- Coordinate and provide expert technical support to global cyber defense technicians to resolve cyber defense incidents in GCA region.
- Coordinate other ISRC global incident response team.
- Develop and maintain incident response plans, procedures, and playbooks to effectively respond to cyber security incidents.
- Coordinate and oversee incident response activities, including detection, containment, eradication, and recovery efforts.
- Collaborate with Cyber Threat Management team to gather and analyze threat intelligence and indicators of compromise (IOCs) to enhance incident detection and response capabilities.
- Conduct post-incident analysis and lessons learned reviews to identify areas for improvement and implement corrective actions to prevent future incidents.
- Stay current on emerging cyber threats, attack techniques, and trends, and incorporate relevant insights into incident response strategies and procedures.
- Prepare and deliver incident response reports, presentations, and other communications to senior leadership and stakeholders.
Your Skills and Expertise
To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:
- Bachelor’s degree or higher (completed and verified prior to start) from an accredited institution
- Five years of Cybersecurity incident response experience in large companies. Experience at leading consulting firms is preferred but not mandatory.
- Hands on technical experience in dealing with China security incidents and familiar with incident response procedures.
- Familiar with ISO 27001, NIST, MLPS, Mitre Att&ck and other security norms, standards & frameworks.
- Good language skills in both English and Chinese, in both written and verbal.
Additional qualifications that could help you succeed even further in this role include:
- Creative and results-oriented, who is good at balancing multiple priorities and issues.
- Willing to and capable of hands-on tasks.
- Effective communications skills, including both written and verbal communication skills, and the ability to translate security principles into business terms.
- Foundational technical expertise, including both business acumen and strategic thinking.
- Willingness to be on call.
Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.
Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.