Global IT Security Manager

Apply for this position Please mention DailyRemote when applying
timePosted 2 days ago location United States salarySalary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

ePlus inc. is currently seeking a Global Security Manager for our client in Richmond, VA. RESPONSIBILITIES Assist in building a world class Security operations team Manage the 247 Security Operations Team Manage the scoping, containment, remediation, reporting, of Incidents Provide guidance on control implementation for post-incident risk reduction. Support the ongoing development of the SIEM environment and Use Case development. Support our Cyber Security Incident Response Team. Recognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations. Conduct host forensics, network, log analysis, and malware triage in support of incident response investigations. Develop comprehensive and accurate reports and presentations for both technical and executive audiences. Effectively communicate investigative findings and strategy to stakeholders including technical staff, executive leadership, and legal counsel. QUALIFICATIONS Previous experience in a financial organization. 5 Years' Experience in Security Operations as hands on technical lead. 3 Years' Experience as SOC manager. Proficiency in Splunk, searching, alerting, dashboard creation, use case creation and logic tuning. Experience with using common EDR tools to investigate and remediate findings. Hands On Threat hunting experience. Proficiency in reviewing logs, determining threat actor TTPs, investigating incidents and implementing defensive strategies Understanding of the cyber incident lifecycle. Proficiency in investigating malicious behavior in on Prem and cloud environments. Hands on experience managing a global 247 team Experience with writing and managing IOC's and signatures such as OpenIOC format, YARA, and Snort. Demonstrated ability to make decisions on remediation and counter measures for challenging information security threats Ability conduct frequency analysis of host system artifacts and analyze patterns of behavior to identify potentially compromised hosts. Expertise in analysis of TCPIP network traffic and communication protocols Experience with a scripting language such as Perl, Python, or other scripting language in an incident handling environment Experience with malware analysis and reverse engineering Experience conducting analysis of electronic media, packet capture, log data, and network devices in support of intrusion analysis or enterprise level information security operations Experience with advanced computer exploitation methodologies preferred, including analysis tools such as Encase or FTK ePlus inc. is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ePlus inc. promotes affirmative action for minorities, women, disabled persons, and veterans