Senior Incident Response Engineer


Senior Incident Response Engineer

Optomi, in partnership with a leading enterprise provider of technology services for banks, is seeking a Senior Security Engineer for a hybrid opportunity local to Atlanta. The ideal candidate will work in a collaborative manner with incident responders, key incident management team members, management, and other stakeholders to ensure security incidents are contained, eradicated, remediated and after-action review is held according to corporate policy.

What the right candidate will enjoy!

  • Hybrid opportunity
  • Working for a highly innovative and adaptable company
  • Working for a company that prides themselves on their culture

Experience of the right candidate:

  • Strong knowledge of network, backend systems, operating systems, applications, and web services in a manner that allows for the interaction of all as it relates to security and services.
  • 5+ Years as a Senior incident responder/leader of incident response
  • Ability to apply analytical expertise and critical thinking to security incidents
  • Ability to assimilate, understand and utilize various security technologies
  • Ability to collaborate within a geographically distributed team of Incident Response Analysts
  • Demonstrated team or functional leadership experience
  • Experience processing and analyzing intelligence in support of management decision making
  • Current Information Security related certification preferred.
  • Current Public cloud related certification preferred.
  • Knowledge of relevant information security and incident response frameworks such as ISO 27001, NIST SP 800-61, NIST Cyber Security Framework, MITRE ATT&CK Framework.
  • Strong communication skills and ability to work in a collaborative atmosphere

Responsibilities of the right candidate:

  • As an active member of the team, monitor and process response for security events on a 24×7 basis.
  • Lead Postmortem exercises post incidents with a focus to identify deficiencies requiring additional attention.
  • Triage, respond to and escalate security incidents.
  • Provide or facilitate the forensics analysis of security events.
  • Leverage automation and orchestration solutions to automate repetitive tasks.
  • Work alongside other security team members to hunt for and identify security issues generated from the network, including third-party relationships.
  • Evaluate SOC policies and procedures/playbooks and recommend updates to management as appropriate.
  • Coordinate incident response activities across multiple independently managed environments and security teams.
  • Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, Public Cloud, and networking, to offer global solutions for a complex heterogeneous environment.
  • Utilize multiple security/threat intelligence tools and resources to understand threats.
  • Analyze and respond to minor and major incidents, reported SPAM and Phishing e-mails.
  • Partner with the detection engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
  • Provide leadership in process improvement and automation of incident response activities.
  • Support 24/7 operations
Job Overview

Receive job alerts twice per week:

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Choose one or more global alerts or browse to the USA and UK alert pages:

USA Specific Job Alerts
UK Specific Job Alerts

Our marketing platform's terms of use