Security Incident Commander, Threat Management Response
Vor 5 Tagen
Security Incident Commander, Threat Management Response - Meraki At Cisco Meraki, we know that technology can connect, empower, and drive us.
Our mission is to simplify technology so our customers can focus on what's most significant to them: their students, patients, customers, and businesses.
We're making networking easier, faster, and sophisticated with technology that simply works.
At Meraki, you will be a part of a tight-knit engineering organization working with hardworking, effective engineers.
A significant influence over the tools that we use to supervise and audit our system and where we choose to deploy them.
Responsible for coordinating the response to security incidents.
You will support other security teams in driving business-friendly security and process improvements.
Finally, by developing our capabilities to promptly detect threats, you will have a direct, immediate, and positive impact on our customers and the hundreds of millions of users that rely on Meraki access points, switches, security appliances, and cameras every single day
The Threat Management Response team is responsible for 24x7x365 monitoring and rapid incident response for all Cisco Meraki environments.
We are the last line of defense to protect the company and our customer's data from threat actors and adversaries.
Incidents can happen at any time, as such this position requires on-call work (including overnight and weekends) on an as-needed basis.
The core hours for this position are 9:30 AM PST - 6:30 PM PST, Monday through Friday.
Key responsibilities: Serve on a rotation of security incident commanders, working with heads of every major product and engineering team to ensure a quick mobilization for high-severity incidentsServe as incident commander when escalations from security analysts require immediate responseWrite SQL to search data warehouses and large datasets for signs of compromiseRespond to high severity incidents and handle the remediation process (e.g.
Malware analysis, large scale phishing attacks, production intrusion, etc.
)Familiarity with the following tools: Security Incident and Event Monitoring (SIEM), File Integrity Monitoring (FIM), Vulnerability Scanners, Endpoint Detection & Response (EDR), Security Orchestration, Automation & Response (SOAR), Network and Host Intrusion Detection (IDS) such as SNORT/Sourcefire, Palo Alto, etc.Investigate security events for Cisco physical and virtual network devices and platformsAssist with and perform digital forensics on host OS or cloud system infrastructure to identify IOCs and other signs of imminent security risk and threatWrite response runbooks and author documentation on organizational response processesYou are an ideal candidate if you: Understand common threat actor tactics, techniques, and procedures (TTPs) and how they are chained togetherHave experience leading threat hunts, using available logs and threat intelligence to proactively identify and investigate potential risks and suspicious behaviorHave a calm methodical approach to investigating potential threatsHave minimum of 5 years worked in cybersecurity roles professionallyHave the ability to build and/or re-architect new and existing solutions within AWS to help tackle problems outstanding to Meraki's security logging or security investigation infrastructureExpertise with observability and security tools like Splunk, ELK, Snowflake or other searchable big data solutionsUnderstand core cybersecurity concepts such as encryption, hashing, non-repudiation, vulnerability management, and least privilegeUnderstand major security compliance frameworks such as PCI, SOC 2, and FedRAMP as they relate to incident monitoring and responseRelevant industry security certifications such as CISSP, SANS GIAC (e.g.
GCIH, GNFA, GCFE, GCFA, GREM), AWS certifications (SAA, SAP, or SCS), etc.Familiarity with other security verticals such as Digital Forensics, Threat Intelligence, Threat Detection, Application Security, Cloud Security, Offensive SecurityValuable knowledge of detection tools, for example: Nessus, Qualys, OSSEC, Osquery, Suricata, Threatstack, AWS Guard DutyExperience with IoT platforms, large-scale distributed systems, and/or client-server architectures#J-18808-Ljbffr
-
Sydney, Österreich Tideri Jobbörse VollzeitSecurity Incident Commander, Threat Management Response - Meraki At Cisco Meraki, we know that technology can connect, empower, and drive us.Our mission is to simplify technology so our customers can focus on what's most significant to them: their students, patients, customers, and businesses.We're making networking easier, faster, and sophisticated with...
-
Sydney, Österreich Tideri Jobbörse VollzeitSecurity Incident Commander, Threat Management Response - Meraki At Cisco Meraki, we know that technology can connect, empower, and drive us.Our mission is to simplify technology so our customers can focus on what's most significant to them: their students, patients, customers, and businesses.We're making networking easier, faster, and sophisticated with...
-
Sydney, Österreich Cisco Systems, Inc. VollzeitSecurity Incident Commander, Threat Management Response - Meraki At Cisco Meraki, we know that technology can connect, empower, and drive us.Our mission is to simplify technology so our customers can focus on what's most significant to them: their students, patients, customers, and businesses.We're making networking easier, faster, and sophisticated with...
-
Security Engineer, Incident Response
vor 3 Wochen
Sydney, Österreich Amazon VollzeitAmazon is seeking a qualified Security Engineer to join our innovative, high-energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide security services to safeguard highly sensitive...
-
Security Engineer, Incident Response
vor 2 Wochen
Sydney, Österreich Amazon VollzeitAmazon is seeking a qualified Security Engineer to join our innovative, high-energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide security services to safeguard highly sensitive...
-
Security Engineer, Incident Response
vor 3 Wochen
Sydney, Österreich Tideri Jobbörse VollzeitJob ID: 2793501 | Amazon Support Services Pty Ltd Amazon is seeking a qualified Security Engineer to join our innovative, high-energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide...
-
Security Engineer, Incident Response
vor 3 Wochen
Sydney, Österreich Amazon VollzeitJob ID: 2793501 | Amazon Support Services Pty LtdAmazon is seeking a qualified Security Engineer to join our innovative, high-energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide...
-
Security Engineer, Incident Response
vor 3 Wochen
Sydney, Österreich Amazon VollzeitJob ID: 2793501 | Amazon Support Services Pty LtdAmazon is seeking a qualified Security Engineer to join our innovative, high-energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide...
-
Security Engineer, Incident Response
vor 1 Woche
Sydney, Österreich Tideri Jobbörse VollzeitJob ID: 2793501 | Amazon Support Services Pty Ltd Amazon is seeking a qualified Security Engineer to join our innovative, high-energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide...
-
Security Engineer, Incident Response
Vor 6 Tagen
Sydney, Österreich Amazon VollzeitJob ID: 2793501 | Amazon Support Services Pty LtdAmazon is seeking for a qualified Security Engineer to join our innovative, high energy Information Security team and work within the Security Incident Response Team (SIRT) in Sydney.SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and...
-
Cloud Security Incident Response Senior Analyst
vor 2 Wochen
Sydney, Österreich Commonwealth Bank VollzeitYou are a problem solver with experience in cloud security, specialising across AWS and Azure services and solutions. We are one of the largest Cyber Security teams in the southern hemisphere. Together we will build tomorrow's bank today, using world-leading engineering, technology, and innovation. Your business: The Technology division delivers the Group's...
-
Threat Hunting And Incident Responder
vor 1 Woche
Sydney, Österreich Endeavour Energy (NSW) VollzeitThere's never been a better time to be in energy.And there's never been a more exciting time to be at Endeavour Energy.More than 2.7 million people across New South Wales rely on us every day for the supply of safe and reliable power to their homes and businesses.We employ more than 1,700 people across our catchment, making us one of the largest employers in...
-
Sr. Incident Response Consultant
vor 1 Woche
Sydney, Österreich CrowdStrike Vollzeit??#WeAreCrowdStrike and our mission is to stop breaches.As a global leader in cybersecurity, our team changed the game.Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks.We're looking for people with limitless passion, a relentless focus on innovation and a fanatical...
-
Threat Detection Analyst
vor 3 Wochen
Sydney, Österreich Tideri Jobbörse VollzeitWe are seeking a talented Threat Detection Analyst.You will be responsible for identifying, analyzing, and responding to potential cyber threats and incidents.Responsibilities: Monitor network and system logs to detect and investigate potential threats.Analyze and interpret security data to identify patterns and trends.Respond to security incidents and take...
-
Threat Detection Analyst
vor 3 Wochen
Sydney, Österreich Zone It Solutions VollzeitWe are seeking a talented Threat Detection Analyst.You will be responsible for identifying, analyzing, and responding to potential cyber threats and incidents.Responsibilities: Monitor network and system logs to detect and investigate potential threats.Analyze and interpret security data to identify patterns and trends.Respond to security incidents and take...
-
Security Engineer, Incident Response
vor 2 Wochen
Sydney, Österreich Amazon VollzeitSecurity Engineer, Incident Response, CloudJob ID: 2790801 | Amazon Corporate Services Pty LtdAWS is looking for a Security Engineer to join the Cloud Response team in Australia.The team manages the security and availability of AWS Cloud services. We operate on the 'AWS' side of the Shared Responsibility Model to ensure "Security of the Cloud" and to protect...
-
Cloud Incident Response Manager
Vor 7 Tagen
Sydney, Österreich Tideri Jobbörse VollzeitCloud Incident Response Manager - Azure Commonwealth Bank of Australia, Sydney, Australia Your business: The Technology division delivers the Group's information technology and banking operations functions to ensure the highest levels of customer service through world-class process excellence and technology innovation.Cyber Security protects the bank and our...
-
Cloud Incident Response Manager
vor 3 Wochen
Sydney, Österreich Efinancialcareers Ltd. VollzeitCloud Incident Response Manager - AzureCommonwealth Bank of Australia, Sydney, AustraliaYour business:The Technology division delivers the Group's information technology and banking operations functions to ensure the highest levels of customer service through world-class process excellence and technology innovation.Cyber Security protects the bank and our...
-
Cloud Incident Response Manager
vor 3 Wochen
Sydney, Österreich Efinancialcareers Ltd. VollzeitCloud Incident Response Manager - AzureCommonwealth Bank of Australia, Sydney, AustraliaYour business:The Technology division delivers the Group's information technology and banking operations functions to ensure the highest levels of customer service through world-class process excellence and technology innovation.Cyber Security protects the bank and our...
-
Cloud Incident Response Manager
vor 2 Wochen
Sydney, Österreich Efinancialcareers Ltd. VollzeitCloud Incident Response Manager - Azure Commonwealth Bank of Australia Sydney, Australia You are a problem solver with technical experience in cloud security, specialising across Azure services and solutions.We are one of the largest Cyber Security teams in the southern hemisphere.Together we will build tomorrow's bank today, using world-leading engineering,...
