Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Information Security

Vacancies: Security Incident Handlers at Salesforce

advertisement 
Vacancies:SecurityIncidentHandlersatSalesforce
Salesforce,theleaderinenterprisecloudcomputingandoneofthetop10placestoworkaccordingto
Fortunemagazine,isseekingseveralSecurityIncidentHandlersforourComputerSecurityIncidentResponse
team(CSIRT)inDublin.TheCSIRTisresponsiblefor24x7x365securitymonitoringandrapidincidentresponse
acrossallSalesforceenvironments.Wearethe‘tipofthespear’inSalesforcesecurityandthelastlineof
defenceprotectingcompanyandcustomerdatafromouradversaries.
IncidentHandlersareresponsibleforexecutingsecurityoperationsprocessesincludingreal-timeanalysisof
securityalertdataandrespondingtopotentialincidents.IncidentHandlersneedstrongsecurityskills
(network,Linux,Windows)andagoodknowledgeofdigitalforensics.Arelevantdegreeinforensicsorsecurity
wouldbebeneficial,aswouldcertificationssuchasSANSGCIAorGCIH.
REQUIREDSKILLS:
•
•
•
•
•
1to5years’experienceintheInformationSecurityfield,includingoperationalsecuritymonitoringor
incidentresponseexperience:
o Monitoringdevicessuchasnetworkandhost-basedintrusiondetectionsystems,webapplication
firewalls,databasesecuritymonitoringsystems,firewalls/routers/switches,proxyservers,
antivirussystems,fileintegritymonitoringtools,andoperatingsystemlogs.
o Respondingtosecurityincidentsinaproductionenvironment,suchasinvestigatingand
remediatingpossibleendpointmalwareinfectionsandmitigatinge-mailbornethreatssuchas
spamandphishing.
StrongtechnicalunderstandingofnetworkfundamentalsandcommonInternetprotocols.
Strongtechnicalunderstandingoftheinformationsecuritythreatlandscape(attackvectorsandtools,
bestpracticesforsecuringsystemsandnetworks,etc.).
FamiliaritywithMicrosoftWindowsandLinux/Unixsystemadministrationandsecuritycontrols.
Musthavestrongverbalandwrittencommunicationskills;abilitytocommunicateeffectivelyandclearly
tobothtechnicalandnon-technicalstaff.
DESIREDSKILLS:
•
•
•
•
•
•
•
•
Experienceconfiguringsecurityincidentandeventmanagementtools(suchasARCSight,SymantecSIM,
LogLogic),includingcreatingeventfilteringandcorrelationrulesandreports.
Systemforensics/investigationskills,includinganalysingsystemartifacts(filesystem,memory,running
processes,networkconnections)forindicatorsofinfection/compromise.
Experiencemanagingintrusiondetectionsystems(suchasIBMISSorSourcefire),includinginitial
provisioning,softwarepatching/upgradesandsignaturecreation/tuning.
Scriptingskills(i.e.Python/Perl,shellscripting)asignificantplus.
Priorexperienceina24x7x365operationsenvironment.
FamiliaritywithITILservicemanagementmethodology.
Abilitytowritecustomintrusiondetectionsystemrules.
Relevantinformationsecuritycertifications,suchasCISSP,SANSGCIA,SANSGCIH,SANSGPEN,SANS
GFCA,OffensiveSecurityOSCP.
FURTHERDETAILS
ThesepositionsarebasedinSandyfordinDublinandareshift-based(4x10-hourdaysperweekincluding
someweekends,typicalhoursare8AMto6PM).Benefitsincludeeducationreimbursementandextensive
trainingopportunities.
ToapplyorforfurtherinformationpleasecontactOwenO’Connoratooconnor@salesforce.com.
Related documents
Critically incident technique The Critical Incident Technique (or CIT
Critically incident technique The Critical Incident Technique (or CIT
Near Miss Incident Reporting and Investigation
Near Miss Incident Reporting and Investigation
first_2014_-_westphal-_kristy_-_don
first_2014_-_westphal-_kristy_-_don
ACADEMIC INTEGRITY VIOLATION FORM
ACADEMIC INTEGRITY VIOLATION FORM
Incident Reporting Form
Incident Reporting Form
Developmental Pathways-Early Intervention Incident Report
Developmental Pathways-Early Intervention Incident Report
illicit discharge report form - Licking Soil and Water Conservation
illicit discharge report form - Licking Soil and Water Conservation
Remove Frame - Disaster Management Centre
Remove Frame - Disaster Management Centre
SEC504: Hacker Techniques, Exploits, and Incident Handling
SEC504: Hacker Techniques, Exploits, and Incident Handling
Computer Forensics as a Part of a Security Incident Response
Computer Forensics as a Part of a Security Incident Response
Incident Handling - UA Information Security
Incident Handling - UA Information Security
SANS: Automation in the Incident Response Process
SANS: Automation in the Incident Response Process
Building a World-Class Security Operations Center: A Roadmap
Building a World-Class Security Operations Center: A Roadmap
Incident Response – How to Fight Back
Incident Response – How to Fight Back
Nippon Computer Security Incident Response Team Association
Nippon Computer Security Incident Response Team Association
Incident Response: How to Fight Back
Incident Response: How to Fight Back
Engineering for Improving the Performance of Incident handling
Engineering for Improving the Performance of Incident handling
Seven Steps to Creating an Effective Computer Security Incident
Seven Steps to Creating an Effective Computer Security Incident
Computer Security Incident Response Team
Computer Security Incident Response Team
Event Brochure
Event Brochure
New Zealand Security Incident Management Guide for Computer
New Zealand Security Incident Management Guide for Computer
Download
advertisement