XDR Consultant - Incident Response- Secureworks- EMEA

Denne stilling er desværre ikke længere ledig.
Se alle ledige stillinger

Udlandet

XDR Consultant - Incident Response- Secureworks- EMEA

Secureworks® (NASDAQ: SCWX) a global cybersecurity leader, enables our customers and partners to outpace and outmanoeuvre adversaries with more precision, so they can rapidly adapt and respond to market forces to meet their business needs. With a unique combination of cloud-native, SaaS security platform and intelligence-driven security solutions, informed by 20+ years of threat intelligence and research, no other security platform is grounded and informed with this much real-world experience. www.secureworks.com

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

Role Overview

The Extended Detection and Response (XDR) Consultant is a fast-paced technical consulting role at the forefront of a global Incident Response Consulting team. A seasoned professional with excellent client interaction skills and appropriate technical knowledge will be successful in this role - focusing on responding to XDR customer requests for immediate assistance in investigating detected or suspected threat activity.

The XDR Consultant will be the first person from the Incident Response Consulting team to respond to XDR customer escalations. The ideal candidate will be able to rapidly assess the existing data to orient with regards to the threat levels being observed, and provide immediate containment and remediation advice to the customer. The ideal person is expected to collect and analyse additional data using digital forensic analysis techniques, to answer investigative questions that can’t be established purely from the available telemetry.

This position will require flexible work hours including weekend days to provide coverage across multiple time zones.

This is primarily a remote position.

Role Responsibilities:

  • Work with Customers to rapidly assess Cyber Security Incidents that are escalated to Secureworks
  • Manage urgent and critical interactions with Customer technical staff
  • Maintain professional, calming, and authoritative presence in crisis situations
  • Monitor several communication channels for incoming emergency response service requests
  • Take ownership of, triage, and update tracking systems for service requests
  • Gather contextual information from multiple sources to establish a service request course of action
  • Meet service level agreements regarding initial response time and client notification as it pertains to Secureworks IR and managed XDR services
  • Facilitate communications with customers and service delivery specialists to assess scope, objectives, and required skillsets for IR service requests
  • Provide instructions in written and oral formats to customers for media handling and artifact collection that are required for IR service requests
  • Provide internal stakeholders the necessary information for decision support and situational awareness on service request intake activities
  • Provide written and verbal handovers to an escalation team of senior responders or regional teams that the role will collaborate with
  • Support the development and documentation of process and tooling improvements for efficient and effective response to MDR service requests

Qualifications:

Knowledge, Skills, and Abilities

  • Excellent technical communication skills (oral and written) including experience briefing executive management and experience in times of crisis
  • Theoretical and practical knowledge in the following areas:
    • Windows and Linux operating systems
    • Exploits, vulnerabilities, intrusion vectors, and malware
    • Host forensics, network forensics, and malware analysis techniques
    • Network traffic analysis, endpoint activity analysis, and log analysis techniques
    • Understanding of enterprise cyber incident management and response processes
    • Understanding of enterprise cybersecurity controls and failure modes
    • Working knowledge of modern Enterprise Detection and Response (EDR) tools.

  • Excellent organization and resource management skills
  • Excellent capability to prioritize multiple and concurrent urgent tasks
  • Excellent customer service skills and ability to quickly establish technical credibility and rapport with clients

Experience

  • Minimum five (5) years of experience in cybersecurity operations or IT/Network Security Engineer
  • Minimum three (3) years in a client facing support role (Security Engineer, Client Services, Consulting, Professional Services)
  • Professional degree relevant to cybersecurity
  • GCIH, GCFE, GCFA, GREM or similar certifications

Why work with Secureworks?

Life at Secureworks means collaborating with dedicated professionals with a passion for technology. When we see something that could be improved, we get to work inventing the solution. Our people demonstrate our winning culture through positive and meaningful relationships. We invest in our people and offer a series of programs that enables them to pursue a career that fulfils their potential. Our team members’ health and wellness is our priority as well as rewarding them for their hard work.

Secureworks is part of the Dell Technologies family of brands. If you require any assistance in applying for an open position or have any specific requirements to attend an interview, please contact [email protected]

We are a Disability Confident Committed Employer and aim to ensure our recruitment process is inclusive and accessible. As members of the disability confident scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancies and ensure our recruitment process is inclusive and accessible.

Secureworks, a Dell Technologies company, is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.

LIPriority

Job ID: R093302


Information og data

Denne ledige stilling har jobtypen "Øvrige", og befinder sig i kategorien "Øvrige stillinger".

Arbejdsstedet er beliggende i Udlandet

Jobbet er oprettet på vores service den 15.4.2021, men kan have været deaktiveret og genaktiveret igen.

Dagligt opdateret: Dette job opdateres dagligt ud fra jobudbyderens hjemmeside via vores søgemaskineteknologi og er aktivt lige nu.
  • Øvrige
  • Udlandet

Lignende jobs

Statistik over udbudte jobs som øvrige i Udlandet

Herunder ser du udviklingen i udbudte øvrige i Udlandet over tid. Bemærk at jobs der ikke har en bestemt geografi ikke er medtaget i tabellen. I den første kolonne ser du datoen. I den næste kolonne ser du det samlede antal øvrige i Udlandet.

Se flere statistikker her:
Statistik over udbudte øvrige i Udlandet over tid

Dato Alle jobs som øvrige
26. december 2024 135
25. december 2024 144
24. december 2024 145
23. december 2024 148
22. december 2024 145
21. december 2024 145
20. december 2024 149
19. december 2024 147
18. december 2024 148
17. december 2024 147
16. december 2024 148
15. december 2024 150
14. december 2024 150
13. december 2024 150
12. december 2024 149
11. december 2024 148
10. december 2024 149
9. december 2024 149
8. december 2024 140
7. december 2024 141
6. december 2024 140
5. december 2024 139
4. december 2024 140
3. december 2024 139
2. december 2024 139
1. december 2024 154
30. november 2024 152
29. november 2024 136
28. november 2024 138
27. november 2024 133
26. november 2024 132