XDR Consultant - Incident Response- Secureworks- EMEA

Denne stilling er desværre ikke længere ledig.
Se alle ledige stillinger

Udlandet

XDR Consultant - Incident Response- Secureworks- EMEA

Secureworks® (NASDAQ: SCWX) a global cybersecurity leader, enables our customers and partners to outpace and outmanoeuvre adversaries with more precision, so they can rapidly adapt and respond to market forces to meet their business needs. With a unique combination of cloud-native, SaaS security platform and intelligence-driven security solutions, informed by 20+ years of threat intelligence and research, no other security platform is grounded and informed with this much real-world experience. www.secureworks.com

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

Role Overview

The Extended Detection and Response (XDR) Consultant is a fast-paced technical consulting role at the forefront of a global Incident Response Consulting team. A seasoned professional with excellent client interaction skills and appropriate technical knowledge will be successful in this role - focusing on responding to XDR customer requests for immediate assistance in investigating detected or suspected threat activity.

The XDR Consultant will be the first person from the Incident Response Consulting team to respond to XDR customer escalations. The ideal candidate will be able to rapidly assess the existing data to orient with regards to the threat levels being observed, and provide immediate containment and remediation advice to the customer. The ideal person is expected to collect and analyse additional data using digital forensic analysis techniques, to answer investigative questions that can’t be established purely from the available telemetry.

This position will require flexible work hours including weekend days to provide coverage across multiple time zones.

This is primarily a remote position.

Role Responsibilities:

  • Work with Customers to rapidly assess Cyber Security Incidents that are escalated to Secureworks
  • Manage urgent and critical interactions with Customer technical staff
  • Maintain professional, calming, and authoritative presence in crisis situations
  • Monitor several communication channels for incoming emergency response service requests
  • Take ownership of, triage, and update tracking systems for service requests
  • Gather contextual information from multiple sources to establish a service request course of action
  • Meet service level agreements regarding initial response time and client notification as it pertains to Secureworks IR and managed XDR services
  • Facilitate communications with customers and service delivery specialists to assess scope, objectives, and required skillsets for IR service requests
  • Provide instructions in written and oral formats to customers for media handling and artifact collection that are required for IR service requests
  • Provide internal stakeholders the necessary information for decision support and situational awareness on service request intake activities
  • Provide written and verbal handovers to an escalation team of senior responders or regional teams that the role will collaborate with
  • Support the development and documentation of process and tooling improvements for efficient and effective response to MDR service requests

Qualifications:

Knowledge, Skills, and Abilities

  • Excellent technical communication skills (oral and written) including experience briefing executive management and experience in times of crisis
  • Theoretical and practical knowledge in the following areas:
    • Windows and Linux operating systems
    • Exploits, vulnerabilities, intrusion vectors, and malware
    • Host forensics, network forensics, and malware analysis techniques
    • Network traffic analysis, endpoint activity analysis, and log analysis techniques
    • Understanding of enterprise cyber incident management and response processes
    • Understanding of enterprise cybersecurity controls and failure modes
    • Working knowledge of modern Enterprise Detection and Response (EDR) tools.

  • Excellent organization and resource management skills
  • Excellent capability to prioritize multiple and concurrent urgent tasks
  • Excellent customer service skills and ability to quickly establish technical credibility and rapport with clients

Experience

  • Minimum five (5) years of experience in cybersecurity operations or IT/Network Security Engineer
  • Minimum three (3) years in a client facing support role (Security Engineer, Client Services, Consulting, Professional Services)
  • Professional degree relevant to cybersecurity
  • GCIH, GCFE, GCFA, GREM or similar certifications

Why work with Secureworks?

Life at Secureworks means collaborating with dedicated professionals with a passion for technology. When we see something that could be improved, we get to work inventing the solution. Our people demonstrate our winning culture through positive and meaningful relationships. We invest in our people and offer a series of programs that enables them to pursue a career that fulfils their potential. Our team members’ health and wellness is our priority as well as rewarding them for their hard work.

Secureworks is part of the Dell Technologies family of brands. If you require any assistance in applying for an open position or have any specific requirements to attend an interview, please contact [email protected]

We are a Disability Confident Committed Employer and aim to ensure our recruitment process is inclusive and accessible. As members of the disability confident scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancies and ensure our recruitment process is inclusive and accessible.

Secureworks, a Dell Technologies company, is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.

LIPriority

Job ID: R093302


Information og data

Denne ledige stilling har jobtypen "Øvrige", og befinder sig i kategorien "Øvrige stillinger".

Arbejdsstedet er beliggende i Udlandet

Jobbet er oprettet på vores service den 15.4.2021, men kan have været deaktiveret og genaktiveret igen.

Dagligt opdateret: Dette job opdateres dagligt ud fra jobudbyderens hjemmeside via vores søgemaskineteknologi og er aktivt lige nu.
  • Øvrige
  • Udlandet

Lignende jobs

Statistik over udbudte jobs som øvrige i Udlandet

Herunder ser du udviklingen i udbudte øvrige i Udlandet over tid. Bemærk at jobs der ikke har en bestemt geografi ikke er medtaget i tabellen. I den første kolonne ser du datoen. I den næste kolonne ser du det samlede antal øvrige i Udlandet.

Se flere statistikker her:
Statistik over udbudte øvrige i Udlandet over tid

Dato Alle jobs som øvrige
7. november 2024 116
6. november 2024 120
5. november 2024 120
4. november 2024 116
3. november 2024 121
2. november 2024 123
1. november 2024 124
31. oktober 2024 120
30. oktober 2024 118
29. oktober 2024 118
28. oktober 2024 111
27. oktober 2024 115
26. oktober 2024 115
25. oktober 2024 107
24. oktober 2024 120
23. oktober 2024 120
22. oktober 2024 121
21. oktober 2024 121
20. oktober 2024 122
19. oktober 2024 123
18. oktober 2024 120
17. oktober 2024 122
16. oktober 2024 122
15. oktober 2024 116
14. oktober 2024 42
13. oktober 2024 44
12. oktober 2024 44
11. oktober 2024 45
10. oktober 2024 85
9. oktober 2024 85
8. oktober 2024 82