Cybersecurity and Incident Response Specialist
Job Description:
- Act as the first responder for cyber-security incidents identified through different channels, Human Resources, Employee Relations, Corporate Investigations, ASOC, Infrastructure CIRT, and client escalations.
- Investigate cases such as, but not limited to:
• Acceptable Use Policy / Code of Business Ethics Violation
• Malware
• Fraud, Intellectual Property Theft, Industrial Espionage
• Cyber Attack / Hacking / APT / Security Breaches
• Mobile Devices - Execute documented processes within all activities of the CIRT playbook and security incident response lifecycle. Escalate security events, depending on determined crisis levels, to management in accordance with the incident response plan
Collect, preserve and process volatile information and evidences needed to conduct highly-confidential forensic investigations. Investigation of digital evidences may include:
• Storage media (i.e. hard drives, optical and flash media)
• Electronic data (i.e. electronic files, pictures, web data, technology device logs)
• Mobile devices (i.e. mobile phones, tablets)
• Volatile media (i.e. workstation memory) - Ensures forensic investigation and incident response procedures comply with standard operating procedures, processes, policies, guidelines, and forensics best practices.
- Examine and analyze security events or incidents, and investigate significant issues, related to technology infrastructure. Employ technical, investigative and analytical skills to solve a wide range of complex issues or problems.
- Coordinate and resolve, or provide recommendations as necessary, containment and remediation steps, until security incident closure.
- Produce detailed written reports outlining the circumstances around the incident, present forensic evidences to a non-technical audience and provide further input as expert opinion. Present and communicate investigation results and relevant findings, for administrative or legal purpose, to internal stakeholders, senior management, auditors or clients, and testify in court as an expert witness, as necessary.
- Participate in the improvement and development of forensic methodologies, process/procedure manuals and documentation.
- Periodically make recommendations that aid in the successful completion of highly complex and technical projects within a process, control or functional area.
- Complete varied complex and non-standard tasks in an assigned area of responsibility.
- Provide eDiscovery and litigation support to identify, preserve, collect, process, review and produce electronically stored information (ESI) for litigation purposes.
- Mentor and provide guidance to incident response staff on security best practices, processes, procedures and countermeasures.
Skills and Work Experience:
Must Have:
- 4-5 years experience in an information security discipline (computer security incident response and digital forensics)
- Used Computer / Network forensics tools (i.e. Encase, SIFT, IEF, HB Gary, FireEye, Mandiant/Fire Eye, Nuix)
- Exposure in Workstation and Server Operating systems (Windows, Linux or OS X, iOS/Android)
- Excellent written and communication skills
- Strong leadership and interpersonal skills. Must be able to work collaboratively physical locations
- Ability to multi-task and prioritize assigned workload
Good to Have:
Advanced understanding of the following topics:
- Network protocols, TCP/IP fundamentals and Network architecture and security infrastructure (i.e. intrusion detection systems, data loss prevention, antivirus, etc.)
- Knowledge of the following topics:
- ISO 27001 / ITIL and COBIT frameworks
- Up to date with current cyber threat landscape and trends
Mandaluyong City
Equal Employment Opportunity Statement
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
Accenture is committed to providing veteran employment opportunities to our service men and women.
Please read Accenture’s Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.