Position Description
If you’re ahead of the game on systems risk and cyber security, we can secure your career ambitions. At CGI, our Security Experts are trusted to work closely with a wide range of clients on exciting projects with real-world purpose and impact. We offer a competitive salary, excellent pension, private healthcare, and a share scheme (3.5% + 3.5% matching). This is a hybrid position.
Your future duties and responsibilities
* Provide technical leadership and conduct incident response engagements to ensure timely response, investigation and remediation execution across cloud, on premise and remote devices
* Help to develop incident response within the Global SOC, paying particular attention to best practices and advances in technology or cyber security
* Perform Advanced Digital Forensics Analysis, Host based or Network analysis as required during an investigation
* Act as the senior subject matter expert where required during security incidents
* Provide ideas and feedback to improve the overall SOC capabilities or maturity (focus on people and processes)
* Work closely with other teams to provide mitigation recommendations and lessons learned to reduce the overall security risk within the organisation
* Preform basic reverse engineering on malware using dynamic and static analysis
* Be part of an on‑call roster providing 24/7 incident response functions
* Act as a mentor to junior analysts in GSOC
Required Qualifications To Be Successful In This Role
* Previous experience leading incident response engagements
* Strong understanding of Incident Response methodologies and tools
* Strong understanding of networking fundamentals
* Strong understanding of Windows/Linux/Unix operating systems
* Strong understanding of operating system and software vulnerabilities and exploitation techniques
* SIEM Experience (e.g. Arcsight, Splunk, Logpoint, ELK)
* EDR Experience (e.g. CrowdStrike Falcon, SentinelOne, Microsoft Defender, Cortex)
* Network analysis experience with NDR technologies
* Malware Analysis (Static Analysis or Dynamic Analysis of captured file, Reverse Engineering)
* Experience of utilizing threat intelligence sources
* User investigations, Behavioural Analysis technology and or processes
* Experience with Insider Threat Investigations
We are committed to inclusivity and diversity in our workforce.
#J-18808-Ljbffr