What you’ll be doing...

Senior CSIRT Consultant

The Senior CSIRT consultant is an expert in the field of incident response.

Role and Responsibilities

  • Monitor available threat information and ensure relevant information is reported to the customer
  • Ensure that relevant threat information leads to proactive investigations (threat-hunting)
  • Oversee the status of assigned accounts and ensure incidents are classified, prioritised and handled according to agreed incident response process
  • Facilitate communication between stakeholders of the status of incidents
  • Ensure agreed reporting is delivered to customer in a timely manner
  • Proactively propose improvements to the customer security posture
  • Be a single point of contact for escalations

The bigger picture:

  • Make containment decisions and facilitate decision making by third parties using established escalation process
  • Verify and monitor the effectiveness of response actions taken
  • Identify attack vectors and take actions to confirm that similar incidents are prevented in the future
  • Coordinate forensics and law enforcement activities if necessary
  • Conduct incident root cause analyses
  • Communicate the results of root cause analysis to Customer and stakeholders to help prevent similar incidents in the future
  • Analyse incident response effort, with feedback from Customer and third parties. Identify and analyse any opportunities for improvement as well as effective decisions made during response process
  • Help develop operational metrics to illustrate risk reduction over time
  • Mentor junior consultants when needed

What we’re looking for...

You'll need to have:

  • Bachelor’s degree in Computer Science or relevant work experience.
  • Experience in a dedicated security position
  • CSIRT team experience
  • Network and web application vulnerability assessments
  • Willingness to travel
  • Valid driver’s license

Even better if you have:

  • A degree
  • Strong SIEM (ideally Splunk) and log analytics skills
  • SANS or other Security certifications, such as GCIA, GCIH, GREM, GPEN, CEH
  • CISSP Certification and / or CISM Certification
  • ITIL Foundations training / certification
  • Knowledge of ISO 27001 requirements
  • Experience of how to structure and operate an efficient Incident Response process
  • Knowledge of common types of malware, infection vectors, how to identify using network and host-based tools, how to eradicate and verify the success of eradication efforts
  • Knowledge of current security threats and vulnerabilities, how to detect and mitigate them, ability to understand their possible consequences in customer environments
  • Knowledge of modern network and cloud technologies
  • Strong communication skills and ability to engage with customers at both technical and executive levels
  • Clear and concise written and verbal English, including the ability to produce high quality documentation
  • Strong problem-solving and security analytics skills; able to identify gaps in processes and recommend improvements for mitigation
  • Strong leadership skills and a proactive approach to customer issues
  • Ability to excel in dynamic environments

When you join Verizon...

You’ll have the power to go beyond – doing the work that’s transforming how people, businesses and things connect with each other. Not only do we provide the fastest and most reliable network for our customers, but we were first to 5G - a quantum leap in connectivity. Our connected solutions are making communities stronger and enabling energy efficiency. Here, you’ll have the ability to make an impact and create positive change. Whether you think in code, words, pictures or numbers, join our team of the best and brightest. We offer great pay, amazing benefits and opportunity to learn and grow in every role. Together we’ll go far.