What you’ll be doing...

Senior CSIRT Consultant

The Senior CSIRT consultant is an expert in the field of incident response.

Role and Responsibilities

  • Monitor available threat information and ensure relevant information is reported to the customer
  • Ensure that relevant threat information leads to proactive investigations (threat-hunting)
  • Oversee the status of assigned accounts and ensure incidents are classified, prioritised and handled according to agreed incident response process
  • Facilitate communication between stakeholders of the status of incidents
  • Ensure agreed reporting is delivered to customer in a timely manner
  • Proactively propose improvements to the customer security posture
  • Be a single point of contact for escalations

The bigger picture:

  • Make containment decisions and facilitate decision making by third parties using established escalation process
  • Verify and monitor the effectiveness of response actions taken
  • Identify attack vectors and take actions to confirm that similar incidents are prevented in the future
  • Coordinate forensics and law enforcement activities if necessary
  • Conduct incident root cause analyses
  • Communicate the results of root cause analysis to Customer and stakeholders to help prevent similar incidents in the future
  • Analyse incident response effort, with feedback from Customer and third parties. Identify and analyse any opportunities for improvement as well as effective decisions made during response process
  • Help develop operational metrics to illustrate risk reduction over time
  • Mentor junior consultants when needed

What we’re looking for...

You'll need to have:

  • Bachelor’s degree in Computer Science or relevant work experience.
  • Experience in a dedicated security position
  • CSIRT team experience
  • Network and web application vulnerability assessments
  • Willingness to travel
  • Valid driver’s license

Even better if you have:

  • A degree
  • Strong SIEM (ideally Splunk) and log analytics skills
  • SANS or other Security certifications, such as GCIA, GCIH, GREM, GPEN, CEH
  • CISSP Certification and / or CISM Certification
  • ITIL Foundations training / certification
  • Knowledge of ISO 27001 requirements
  • Experience of how to structure and operate an efficient Incident Response process
  • Knowledge of common types of malware, infection vectors, how to identify using network and host-based tools, how to eradicate and verify the success of eradication efforts
  • Knowledge of current security threats and vulnerabilities, how to detect and mitigate them, ability to understand their possible consequences in customer environments
  • Knowledge of modern network and cloud technologies
  • Strong communication skills and ability to engage with customers at both technical and executive levels
  • Clear and concise written and verbal English, including the ability to produce high quality documentation
  • Strong problem-solving and security analytics skills; able to identify gaps in processes and recommend improvements for mitigation
  • Strong leadership skills and a proactive approach to customer issues
  • Ability to excel in dynamic environments

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.