Secureworks (NASDAQ: SCWX) is a global cybersecurity leader that secures human progress with Secureworks® Taegis™, a SaaS-based, open XDR platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.
Role Responsibilities
- Respond to critical computer security incidents by collecting, analyzing, and preserving digital evidence.
- Assemble and coordinate with technical teams and third-party vendors to resolve incidents as quickly and efficiently as possible.
- Communicate status of response, resolution, and final root cause analysis to the appropriate stakeholders.
- Ensure that all incidents are recorded and tracked to meet audit and legal requirements.
- Conduct root cause analysis to identify gaps and recommendations ultimately remediating risks.
- Communicate effectively with representatives of the Lines of Business, technology specialists, and vendors.
- Gather forensic evidence for disciplinary action or criminal investigation.
- Partner with all business lines to investigate internal code of conduct, fraud and other investigations as instructed by the CISO.
- Understand and direct actions against common exploits.
- Write software to automate tasks.
- Conduct advanced computer and network forensic investigation functions relating to various forms of electronic fraud, identity theft, e-commerce fraud, computer intrusion, theft of information, denial of service, multi-national organized electronic criminal groups, as well as financial fraud investigations.
- Perform other essential duties as assigned.
- Some basic system administration duties.
- Vendor communications for technical support where required.
Requirements
- 10+ years’ experience in IT industry including at least 5 from the Information Security sector with a focus on Incident Response
- Emerging information security technologies and development methodologies
UNIX, Linux, and Microsoft operating systems - Security software and tools
- Software development experience
- FFIEC, PCI, and HIPPA compliance
- Application design reviews and threat modeling
- Superior communication, organization, and interpersonal skills and a demonstrated effectiveness in a customer facing role
Preferences
- Four-year degree in a relevant field preferred or an equivalent amount of post-secondary education and experience
- Certifications given priority: GCIH, GCIA, GREM, GSE