Senior Manager, Incident Reponse
Vultr$150,000 - $225,000/year
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Technology, CybersecurityIndustries
Requirements
- Minimum 3 years of experience (at least 5+ years preferred in Information Security, Risk Management, Infrastructure Security, and Compliance)
- Hands-on experience with Security Information and Event Management (SIEM), particularly Sentinel and/or Splunk (administration or development)
- Work experience in Virtual, AWS, and Azure environments
- Installations, configuration, and troubleshooting of security devices (e.g., firewall, IDS)
- Basic expertise in UNIX, Linux, and Windows Operating Systems
- Complete understanding of TCP/IP, HTTP, HTTPS, SSL protocols
- Hands-on experience with port scanning and vulnerability scanning techniques
- Exploit and detection analysis skills, including log analysis for patterns
- Good understanding of Infrastructure Security and its impact on Security Operations, Vulnerabilities, Reporting, Analytics, and Monitoring
- Good understanding of frameworks such as ISO 27001/27002, COBIT, PCI, HIPAA, SOX, FISMA
- 15 years full-time education; Bachelor’s or above in Computer Science, Information Technology, MIS, or Engineering
- Desirable certifications: CISSP, ITIL, CISA, CISM, GIAC-GCIA, GCIH
- Experience in diversified, virtual environments
Responsibilities
- Define the cloud security framework and architecture, ensuring alignment with business requirements and performance goals
- Document implementation of cloud security controls and transition to cloud security-managed operations
- Analyze potential infrastructure security incidents using Sentinel and/or Splunk to determine legitimacy as security breaches
- Perform network incident investigations, determine causes, and preserve evidence for legal action
- Interface with technical personnel and other teams as required
- Produce security incident reports and briefings for team lead and manager
- Configure and manage Infrastructure Security and SIEM solutions
- Design, develop, and create correlation rules within the SIEM platform
- Monitor devices and correlation tools for potential threats
- Initiate escalation procedures to counteract threats/vulnerabilities
- Inform and advise management on incidents and prevention
- Implement continuous improvement measures daily
- Identify, assess, and resolve complex issues within area of responsibility
- Provide incident remediation and prevention documentation
- Document and conform to processes related to security monitoring
- Participate in knowledge sharing with analysts and develop solutions efficiently
- Coordinate or participate in individual or team projects
- Write technical articles for internal knowledge base
- Provide performance metrics as necessary
- Develop and optimize technical processes and coordinate procedure documentation
Skills
SIEM
Sentinel
Splunk
Cloud Security
Security Incident Response
Correlation Rules
Network Investigation
Infrastructure Security
Accenture
Global professional services for digital transformation
About Accenture
Accenture provides a wide range of professional services, including strategy and consulting, technology, and operations, to help organizations improve their performance. Their services assist clients in navigating digital transformation, enhancing operational efficiency, and achieving sustainable growth. Accenture's offerings include cloud migration, cybersecurity, artificial intelligence, and data analytics, which are tailored to meet the needs of various industries such as financial services, healthcare, and retail. What sets Accenture apart from its competitors is its extensive industry knowledge and ability to deliver comprehensive solutions that address both immediate challenges and long-term goals. The company's aim is to support clients in reducing their environmental impact while driving innovation and growth.
Dublin, IrelandHeadquarters
1989Year Founded
$8.5MTotal Funding
IPOCompany Stage
Consulting, Enterprise Software, CybersecurityIndustries
10,001+Employees
Risks
Rapid AI advancements may outpace Accenture's current capabilities, risking competitive disadvantages.
Integration challenges from multiple acquisitions could affect Accenture's operational efficiency.
The rise of AI-driven startups may disrupt Accenture's market share in customer service solutions.
Differentiation
Accenture's acquisitions enhance its capabilities in digital twin technology for financial services.
The company is expanding its expertise in net-zero infrastructure through strategic acquisitions.
Accenture's focus on software-defined vehicles positions it as a leader in automotive innovation.
Upsides
Accenture's investment in EMTECH supports central bank modernization amid digital currency evolution.
The acquisition of Award Solutions boosts Accenture's presence in the growing 5G and IoT markets.
Accenture's strategic acquisitions align with high-growth markets like digital twins and net-zero projects.
Related Jobs
RemoteRemoteSecurity Analyst
Qualified.com$130,000 - $145,000/year
- Full Time
- Junior (1 to 2 years)
RemoteCyber Threat Analyst
ArcadiaSalary not specified
- Full Time
- Junior (1 to 2 years), Mid-level (3 to 4 years)
RemoteCyber Analyst, Digital Forensics Incident Response
At-BaySalary not specified
- Full Time
- Mid-level (3 to 4 years)
RemoteCloud Engineer III - Next-Gen SIEM (Remote)
CrowdstrikeSalary not specified
- Full Time
- Expert & Leadership (9+ years)
RemoteSr. IT & Cyber Operations Analyst (Remote)
CrowdstrikeSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSecurity Operations Analyst
The Voleon GroupSalary not specified
- Full Time
- Entry Level & New Grad