Cyber Incident Response Team (CIRT) Analyst Cyber Incident Response Team (CIRT) Analyst …

S&P Global
in Singapore
Permanent, Full time
Last application, 14 Jan 21
Competitive
S&P Global
in Singapore
Permanent, Full time
Last application, 14 Jan 21
Competitive
Cyber Incident Response Team (CIRT) Analyst
The Role: Cyber Incident Response Analyst

The Location: Singapore

The Team: As Cyber Incident Response Team (CIRT) Analyst, you will be part of the Global Risk Assurance , Cyber Defense team that develops and oversees the company's security program, ensuring the company is protected from existing and emerging threats.

The Impact: As Cyber Incident Response Team (CIRT) Analyst, you will be part of the Global Risk Assurance , Cyber Defense team that develops and oversees the company's security program, ensuring the company is protected from existing and emerging threats. Working with the various teams, the APAC CIRT Analyst will ensure that appropriate procedures followed to detect and respond decisively to security incidents, coordinating incident response related activities within China and providing support globally.

Responsibilities:
  • Coordinate and triage response to cybersecurity events and conduct forensic analysis
  • Understand the threat landscape through collaboration with the Threat Intelligence team and other stakeholders
  • Work with the Security Operations Center (SOC) to proactively identify security events
  • Support incident response activities
  • Update standard operating procedures and playbooks to align response activities with best practices
  • Assist with the management of end to end incident response lifecycle
  • Build an understanding of key S&P regional technology, systems, and business practices
  • Coordinate and triage response to cybersecurity events and conduct forensic analysis
  • Understand the threat landscape through collaboration with the Threat Intelligence team and other stakeholders
  • Work with the Security Operations Center (SOC) to proactively identify security events
  • Deploy and maintain security tools.
What We're Looking For:
Basic Qualifications:
  • Demonstrate working knowledge of network traffic and communications, including known ports and services;
  • Demonstrate a working knowledge of the Windows operating system and familiarity with Unix/Linux and macOS
  • Demonstrates knowledge of the following security related technologies: IPS, IDS, SIEM, firewalls, DNS, encryption, HIDS, NIDS, proxies, Network Packets, malware analysis, and forensic tools
  • Demonstrate an understanding of various open source and commercial analysis tools used for incident analysis
  • Demonstrate basic knowledge of CIRT management principles, as described in NIST 80061
  • Proficiency in conducting research and analysis, compiling relevant information into a document for presentation
  • Demonstrate the basic ability to write technical reports that can be consumed by multiple types of consumers
  • Demonstrated ability to extract actionable information and indicators collected logs sources and other data
  • Strong previous experience working with SIEM tools, SPLUNK Prefered.
  • Ability to create alerts, reports, dashboards, ingest logs, and extract usable data.
  • Previous SOAR tool experience.
  • Previous EDR tool experience.
  • Must be comfortable working independently and part of a team.
Preferred Qualifications:
  • Computer science background is preferred
  • Knowledge of industry standard frameworks, such as ISO and NIST
  • Previous experience in the financial sector
  • Scripting and automation experience
  • Experience and working knowledge of with SPLUNK.
S&P Global Corporate
At S&P Global, we don't give you intelligence-we give you essential intelligence. The essential intelligence you need to make decisions with conviction. We're the world's foremost provider of credit ratings, benchmarks and analytics in the global capital and commodity markets. Our divisions include S&P Global Ratings, S&P Global Market Intelligence, S&P Dow Jones Indices and S&P Global Platts. For more information, visit www.spglobal.com

S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, gender, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or other legally protected categories, subject to applicable law .

To all recruitment agencies; S&P does not accept unsolicited agency resumes. Please do not forward such resumes to any S&P Global employee, office location or website. S&P Global will not be responsible for any fees related to such resumes.

20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.1 - Middle Professional Tier I (EEO Job Group)

Job ID: 256595
Posted On: 2020-09-01
Location: Singapore, Singapore
S&P Global logo
More Jobs Like This
See more jobs
Close
Loading...
Loading...