Digital Forensic and Incident Response Team Lead
4 weeks ago
AVEVA is a global leader in industrial software. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life - such as energy, infrastructure, chemicals and minerals - safely, efficiently and more sustainably.
We’re the first software business in the world to have our sustainability targets validated by the SBTi, and we’ve been recognized for the transparency and ambition of our commitment to diversity, equity, and inclusion. We’ve also recently been named as one of the world’s most innovative companies.
Digital Forensic and Incident Response Team Lead (Cyber Security)
DFIR Team Lead will be also responsible to lead the forensic analysis and evidence collection by ensure to follow all safety and privacy procedures when handling sensitive and confidential information such as documents, videos, or pictures. Additionally, handle and receive evidence carefully and keep accurate records of duties performed. In addition, DFIR team Lead also need to provide inputs into definition of security policies, process and awareness and compliance. He/she will work with the Cyber Security Response Manager and wider Information Security team and communicates with AVEVA staff to re-enforce security awareness and compliance.
Roles and Responsibilities- Lead Cyber Security Response Analyst team on proactively identifying, Investigating, and hunting potential attacks and security risks on AVEVA networks and systems using various platform dashboards and threat feeds.- Lead Cyber Security Response Analyst team on analysis of security events as detected by various security controls, monitoring, and recording security events in daily, weekly, monthly, and quarterly reports.- Lead Cyber Security Response Analyst team on analysis of escalated security events, notifications, and alerts from managed Security Operation Centre (SOC).Lead Cyber Security DFIR team on creating and maintaining information security operations process, procedure, and checklist documentation, such as incident response plan and playbook.- Lead Cyber Security DFIR team on incident response using AVEVA defined Security Incident Response framework such as NIST.- Reports to Cyber Security Response Manager on concerning security events, incident trends, residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance.- Works with the AVEVA Infrastructure Operations team and any required partners/business functions such as R&D to resolve security events, incidents, and service requests.- Ensures Cyber Security DFIR team comply with security processes and procedures and supports service-level agreements (SLAs) to ensure that security controls are managed and maintained.- Contributes through security advisories, blogs, and other communication channels on current and emerging security threats to AVEVA assets and people via the security awareness programme.- Be available to provide reactive support to critical security incidents outside standard business hours as part of a rota.
Additional Duties
Under the guidance of Cyber Security Response Manager- Assist with control improvements to identify control weaknesses and contributes to vulnerability advisories.- Participates in security investigations and compliance reviews, as requested by internal or external auditors.- Assisting with audit finding remediation, action plans. track progress and provide status updates to the enterprise compliance team for reporting purposes.- Maintain awareness of applicable regulatory standards, upstream risks, and industry leading security practices.- Provide feedback and recommendations on existing and new security tools and techniques for the improvement of analysis, incident investigation and security controls.
Skills and Qualifications- Minimum two years of experience leading or managing technical teams.- Minimum of five years information and cyber security experience as Security Analyst and Incident Response, Security Threat Hunting, or Security Operations Centre analyst role.- Bachelor's degree in information systems or equivalent work experience in relevant information and cyber security domain is desirable.- Security certification from a recognised organisation such as ISC2, CompTIA, ECCouncil, SANS Institute is as advantage.- Technology standard certification such as from Cisco, VMware, Microsoft is an advantage.-
- Familiarity with cloud computing environments such as Microsoft Azure- Familiarity with Security Operations Centers (SOC)- Experience responding to incidents, developing (and seeing through to completion) remediation plans, creating and formalizing incident response program processes and procedures, and working cross-functionally with teams outside of security to accomplish enterprise security goals.- Excellent interpersonal and group dynamic skills- Excellent technical knowledge of Microsoft Operating Systems.- Knowledge and experience of Linux and Macintosh.- Stro
-
London, United Kingdom Booz Allen Hamilton Full timeDigital Forensics and Incident Response Consultant Key Role: Display professional and expert knowledge of incident response processes, tools, and techniques. Handle incident investigation with little oversight and make significant contributions to any incident response efforts. Participate in cyber incident response investigations requiring forensic,...
-
Incident Response Manager
6 days ago
London, United Kingdom NonStop Consulting Ltd Full time**Incident Response Manager** I am currently looking for an Incident Response Manager/ Assistant Manager to join my prestigious client. You will be working as a key part of their specialist Cyber Response team to help their prominent, large-scale Clients understand and respond to thechallenge of cyber threats. **Responsibilities** - Manage and co-ordinate...
-
Security Engineer, Incident Response
7 days ago
London, United Kingdom Cyber Crime Full timeMeta Security is looking for an Incident Response Engineer with experience in the identification, containment and mitigation of security incidents. You will be analyzing different data sources to detect, investigate and respond to internal and external threats. You will also be working with our software and production engineering teams to develop scalable...
-
Security Engineer, Incident Response
2 weeks ago
London, United Kingdom Cyber Crime Full timeMeta Security is looking for an Incident Response Engineer with experience in the identification, containment and mitigation of security incidents. You will be analyzing different data sources to detect, investigate and respond to internal and external threats. You will also be working with our software and production engineering teams to develop scalable...
-
Security Engineer, Incident Response
2 weeks ago
London, United Kingdom Cyber Crime Full timeMeta Security is looking for an Incident Response Engineer with experience in the identification, containment and mitigation of security incidents. You will be analyzing different data sources to detect, investigate and respond to internal and external threats. You will also be working with our software and production engineering teams to develop scalable...
-
Incident Response Manager
3 days ago
London, United Kingdom NonStop Consulting Ltd Full time**Responsibilities** - Manage and co-ordinate cyber security incidents for clients working closely with the team lead. - Digital forensics of relevant incident data (disk, volatile memory, network packets, log files). - Provide an up to date view of the cyber threat, and advise clients on relevant threats and improve incident response capabilities - Develop...
-
Senior Digital Forensics Analyst
3 days ago
London, United Kingdom LT Harper Ltd Full time €60,000Senior Digital Forensic & Incident Response Analyst - Remote - Circa £60,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote with very occasional attendance at client sites to provide containment and remediation to...
-
Senior Digital Forensics Analyst
4 days ago
London, United Kingdom LT Harper Ltd Full time €60,000Senior Digital Forensic & Incident Response Analyst - Remote - Circa £60,000 My client is a DFIR and offensive security specialist consultancy looking to expand their DFIR capabilities by onboarding an experienced technical DFIR analyst. This position will be remote with very occasional attendance at client sites to provide containment and remediation to...
-
Cyber Incident Response Manager
7 days ago
London, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
7 days ago
London, United Kingdom Hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.Are you the right candidate for this opportunity Make sure to read the full description below.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need...
-
Cyber Incident Response Manager
1 week ago
london, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
3 days ago
London, United Kingdom hubbado Full timeJob Description Cyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset. This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will...
-
Cyber Incident Response Manager
1 week ago
London, United Kingdom Hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.Are you the right candidate for this opportunity Make sure to read the full description below.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need...
-
Cyber Incident Response Manager
1 week ago
London, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
1 week ago
London, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset. This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
7 days ago
London, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
1 week ago
London, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset. This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
7 days ago
London,, UK, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
7 days ago
London Area, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset.This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
-
Cyber Incident Response Manager
7 days ago
London Area, United Kingdom hubbado Full timeCyber Incident Manager with excellent stakeholder and team management skills as well as a technical mindset. This role will require you in the office at least twice a week and be on-call one in every four weeks. You will be required to go through SC clearance so need to have been a UK resident for the past five years, unfortunately we will not be able to...
