Incident Response Analyst
Gurgaon, India
Milliman
Discover your path at Milliman. Learn about our uniquely independent company culture and find opportunities in the actuarial profession, risk management, software development, marketing, and more.Job Summary
This is a contract position within the corporate information security office (CISO) team. The position is to participate in the incident response management team. The position works with local offices and their administrators to assist in accomplishing incident triage and forensic activities consistent with documented procedures for confirmed incidents. The position shall report to and work with the Information Security Manager, India. In addition, the position shall work with peer team members, Asia Head, Director of Operations & Security, and the corporate legal team.
Job Requirements
- Coordinate response, escalation, tracking and analysis of incidents at remote offices
- Analyze security events/logs and report on threats and incidents across various platforms and environments. Escalate complex cases to the Detection team and the system owners.
- Work with IT and various business units to triage and remediate detected security incidents and alerts
- Development of Incident Response dashboard and metrics as directed by manager
- Management and monitoring of data loss prevention (DLP) initiatives
- Assist in identifying and remediating gaps as identified throughout the investigation
- Review log-based data, both in raw form and utilizing SIEM or aggregation tools
Qualifications
- Minimum of One (1) or more years of combined IT and information security work experience with handling information security incident response, DLP, SIEM, etc.
- In depth knowledge of Information Security incident handling and investigation procedures
- Technical skills proficiency in the following areas: security information event management (SIEM), managing event analysis/correlation and related incident investigations, forensic analysis of digital evidence, network communication using TCP/IP protocols, basic system administration, basic understanding of malware (malware communication, installation, malware types), intermediate knowledge of computer network defense operations (proxy, firewall, IDS/IPS, router/switch, open-source information collection
- Excellent teamwork skills and the ability to successfully interface with other organizational groups
- Candidate must be able to effectively communicate in English (written and presentation/verbal)
- Candidate should have excellent decision making and problem-solving skills including the ability to clearly define and resolve issues.
Education & Experience
- Bachelor’s degree in computer science (or related engineering degree)
- Minimum of 1 years of information systems security (or cyber security) experience
- Working knowledge of security operations: perimeter defense, forensics, incident response, SIEM, DLP, and security metrics.
- Preferred Certifications: CEH, Security+, Certified Incident Handler (CIH)
- Understanding of risk-based and one or more of the following frameworks: HITRUST, NIST, PCI-DSS, Sarbanes Oxley, HIPAA, FISMA, ISO, or COBIT.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CEH CISO COBIT Computer Science Firewalls FISMA Forensics HIPAA HITRUST IDS Incident response IPS Malware Monitoring NIST SIEM TCP/IP
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open DevOps-related jobs
- Open EDR-related jobs
- Open DoD-related jobs