What's the role?
We are currently looking for a Lead Information Security Engineer (Incident Response, Forensics) will primarily contribute in incident response performing following activities :
Security Incident Response supervision - driving security incident response process, requesting appropriate actions to be taken to mitigate the incident and minimize possible impact
Security Incident Response execution - as part of the incident response team - execute tasks required to mitigate the incident and minimize possible impact
Maturation of Security Operation Center assisting internal SOC in monitoring SIEM, triaging alerts and responding to security incidents.
Integration of Threat Detection & Response tooling work with Detection Engineering team to help build out SOAR and SIEM functionality.
Forensics - perform forensics evidence collection, analyze affected environment
Reporting - compiling and presenting Security Incident report, analyzing causes and consequences of the security incident, providing information on incident timelines, attack vectors involved, impact and deriving activities required actions to be taken.
In this role Lead info security engineer (Incident Response, Forensics) will be working with the SOC, infrastructure groups, networking divisions, IT and other internal parties to ensure timely resolution of Security Incidents and proper analysis of the same.
Lead info security engineer (Incident Response, Forensics) will be in charge of handling incidents in multiple environments and platforms - Data Center, Public Cloud, Office space.
Who are you?
To be succesfull in the role within HERE you and this great team you will recognise your strenghts in the 4 domains below :
Malware Analysis - Be able to assess impact and suggest remediation actions to address malware infections in multiple environments - Linux, Windows, Mac OSX
Forensics evidence collection - Have a good understanding of activities required for forensics evidence collection and analysis, be able to collect and analyze forensics evidence following legal requirements and industry best practices
Security knowledge - Have a good knowledge of modern attack vectors, attack execution patterns and exploitation techniques
Communications skills - Can clearly communicate things required to be executed by other members of incident response team.
Be fluent in English and be able to coordinate multiple activities comprising security incident response process.
HERE is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, age, gender identity, sexual orientation, marital status, parental status, religion, sex, national origin, disability, veteran status, and other legally protected characteristics.
Who are we?
HERE Technologies is a location data and technology platform company. We empower our customers to achieve better outcomes from helping a city manage its infrastructure or a business optimize its assets to guiding drivers to their destination safely.
At HERE we take it upon ourselves to be the change we wish to see. We create solutions that fuel innovation, provide opportunity and foster inclusion to improve people’s lives.
If you are inspired by an open world and driven to create positive change, join us.