Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Information Security

Vacancies: Security Incident Handlers at Salesforce

advertisement 
Vacancies:SecurityIncidentHandlersatSalesforce
Salesforce,theleaderinenterprisecloudcomputingandoneofthetop10placestoworkaccordingto
Fortunemagazine,isseekingseveralSecurityIncidentHandlersforourComputerSecurityIncidentResponse
team(CSIRT)inDublin.TheCSIRTisresponsiblefor24x7x365securitymonitoringandrapidincidentresponse
acrossallSalesforceenvironments.Wearethe‘tipofthespear’inSalesforcesecurityandthelastlineof
defenceprotectingcompanyandcustomerdatafromouradversaries.
IncidentHandlersareresponsibleforexecutingsecurityoperationsprocessesincludingreal-timeanalysisof
securityalertdataandrespondingtopotentialincidents.IncidentHandlersneedstrongsecurityskills
(network,Linux,Windows)andagoodknowledgeofdigitalforensics.Arelevantdegreeinforensicsorsecurity
wouldbebeneficial,aswouldcertificationssuchasSANSGCIAorGCIH.
REQUIREDSKILLS:
•
•
•
•
•
1to5years’experienceintheInformationSecurityfield,includingoperationalsecuritymonitoringor
incidentresponseexperience:
o Monitoringdevicessuchasnetworkandhost-basedintrusiondetectionsystems,webapplication
firewalls,databasesecuritymonitoringsystems,firewalls/routers/switches,proxyservers,
antivirussystems,fileintegritymonitoringtools,andoperatingsystemlogs.
o Respondingtosecurityincidentsinaproductionenvironment,suchasinvestigatingand
remediatingpossibleendpointmalwareinfectionsandmitigatinge-mailbornethreatssuchas
spamandphishing.
StrongtechnicalunderstandingofnetworkfundamentalsandcommonInternetprotocols.
Strongtechnicalunderstandingoftheinformationsecuritythreatlandscape(attackvectorsandtools,
bestpracticesforsecuringsystemsandnetworks,etc.).
FamiliaritywithMicrosoftWindowsandLinux/Unixsystemadministrationandsecuritycontrols.
Musthavestrongverbalandwrittencommunicationskills;abilitytocommunicateeffectivelyandclearly
tobothtechnicalandnon-technicalstaff.
DESIREDSKILLS:
•
•
•
•
•
•
•
•
Experienceconfiguringsecurityincidentandeventmanagementtools(suchasARCSight,SymantecSIM,
LogLogic),includingcreatingeventfilteringandcorrelationrulesandreports.
Systemforensics/investigationskills,includinganalysingsystemartifacts(filesystem,memory,running
processes,networkconnections)forindicatorsofinfection/compromise.
Experiencemanagingintrusiondetectionsystems(suchasIBMISSorSourcefire),includinginitial
provisioning,softwarepatching/upgradesandsignaturecreation/tuning.
Scriptingskills(i.e.Python/Perl,shellscripting)asignificantplus.
Priorexperienceina24x7x365operationsenvironment.
FamiliaritywithITILservicemanagementmethodology.
Abilitytowritecustomintrusiondetectionsystemrules.
Relevantinformationsecuritycertifications,suchasCISSP,SANSGCIA,SANSGCIH,SANSGPEN,SANS
GFCA,OffensiveSecurityOSCP.
FURTHERDETAILS
ThesepositionsarebasedinSandyfordinDublinandareshift-based(4x10-hourdaysperweekincluding
someweekends,typicalhoursare8AMto6PM).Benefitsincludeeducationreimbursementandextensive
trainingopportunities.
ToapplyorforfurtherinformationpleasecontactOwenO’Connoratooconnor@salesforce.com.
Related documents
Critically incident technique The Critical Incident Technique (or CIT
Critically incident technique The Critical Incident Technique (or CIT
Near Miss Incident Reporting and Investigation
Near Miss Incident Reporting and Investigation
first_2014_-_westphal-_kristy_-_don
first_2014_-_westphal-_kristy_-_don
ACADEMIC INTEGRITY VIOLATION FORM
ACADEMIC INTEGRITY VIOLATION FORM
Incident Reporting Form
Incident Reporting Form
Developmental Pathways-Early Intervention Incident Report
Developmental Pathways-Early Intervention Incident Report
illicit discharge report form - Licking Soil and Water Conservation
illicit discharge report form - Licking Soil and Water Conservation
Remove Frame - Disaster Management Centre
Remove Frame - Disaster Management Centre
SEC504: Hacker Techniques, Exploits, and Incident Handling
SEC504: Hacker Techniques, Exploits, and Incident Handling
Computer Forensics as a Part of a Security Incident Response
Computer Forensics as a Part of a Security Incident Response
Incident Handling - UA Information Security
Incident Handling - UA Information Security
SANS: Automation in the Incident Response Process
SANS: Automation in the Incident Response Process
Download
advertisement