Current jobs related to Cyber Incident Response Lead - Dublin - Cyber UK
-
Manager - Incident Response
3 weeks ago
Dublin, Ireland Kpmg International Limited Full timeOverviewWhen you join KPMG Ireland, you are joining a community of over 4,200 employees who collectively work together, both in person and virtually, to achieve their full potential.We are known as an organisation who want you to come as you are and do work that truly matters.Joining KPMG Ireland is an opportunity to enhance your career, not only in the work...
-
Manager - Incident Response
3 weeks ago
Dublin, Ireland Kpmg International Limited Full timeOverviewWhen you join KPMG Ireland, you are joining a community of over 4,200 employees who collectively work together, both in person and virtually, to achieve their full potential.We are known as an organisation who want you to come as you are and do work that truly matters.Joining KPMG Ireland is an opportunity to enhance your career, not only in the work...
-
Dublin Pike, Ireland Integrity360 Full timeLocation: Dublin, Ireland About Us Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)—including locations in Dublin, Sofia, Stockholm,...
-
Cyber Threat Detection
18 hours ago
Dublin, Ireland Cpl Full timeJob Title: Cyber Threat Detection & Response AnalystAbout the Role We are seeking an experienced Cyber Threat Detection & Response Analyst to join the team at ESB. In this role, you will be responsible for monitoring, investigating, and responding to cyber threats that may impact networks, systems, and data. You’ll also support proactive threat hunting,...
-
Cyber Threat Detection
6 days ago
Dublin, Ireland CPL Full timeJob Title: Cyber Threat Detection & Response Analyst About the Role We are seeking an experienced Cyber Threat Detection & Response Analyst to join the team at ESB. In this role, you will be responsible for monitoring, investigating, and responding to cyber threats that may impact networks, systems, and data. You’ll also support proactive threat hunting,...
-
Cyber Defence Senior Analyst
6 days ago
Dublin, Ireland Dunnes Stores Full timeJob Description Dunnes Stores is Ireland's leading retailer positioned at the cutting edge of food, fashion and home retailing. We are known for offering a wide range of high-quality products to our customers. We are a customer focused business and constantly exploring new ways to improve the experience for our customers. This includes embracing changes in...
-
Cyber Security Architect
3 weeks ago
Dublin, Ireland Pfh Technology Group Full timeCyber Security Architect RoleThe Health Service Executive (HSE) is seeking a highly skilled Cyber Security Architect to support the implementation of robust cybersecurity technologies and services across the organisation.In this role, you will lead large-scale security projects, ensuring the effective deployment of cutting-edge solutions to safeguard...
-
Cyber Security Architect
3 weeks ago
Dublin, Ireland Pfh Technology Group Full timeCyber Security Architect RoleThe Health Service Executive (HSE) is seeking a highly skilled Cyber Security Architect to support the implementation of robust cybersecurity technologies and services across the organisation.In this role, you will lead large-scale security projects, ensuring the effective deployment of cutting-edge solutions to safeguard...
-
Cyber Security Engineer
2 weeks ago
Dublin, Ireland Airtel Atn Full timeCyber Security Engineer (ISMS Engineer)Hybrid | Dun Laoghaire, Co.Dublin | Full-time or Part-time | Flexible HoursJob DescriptionWe have an exciting new opportunity for a new full-time or part-time, flexible, hybrid role in a busy aeronautical telecommunications software company based in Dun Laoghaire, Co Dublin.You are passionate about cyber security and...
-
Cyber Security Audit Senior
3 weeks ago
Dublin, Ireland Forvis Mazars In Ireland Full timeJoin to apply for theCyber Security Audit Seniorrole atForvis Mazars In IrelandForvis Mazarsis a leading professional services firm with ambitious growth plans and over 1000 staff based in Cork, Dublin, Galway and Limerick.Security/ cyber security audit is an exciting and challenging environment working with clients of different sizes and sectors nationally...
Cyber Incident Response Lead
4 weeks ago
Company Description
Experian is a global data and technology company, powering opportunities for people and businesses around the world. We help to redefine lending practices, uncover and prevent fraud, simplify healthcare, create marketing solutions, and gain deeper insights into the automotive market, all using our unique combination of data, analytics and software. We also assist millions of people to realise their financial goals and help them save time and money. We invest in people and new advanced technologies to unlock the power of data. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland.
Job Description
As a member of Experian’s Global Security Office (EGSO) / Cyber Fusion Center (CFC), you will respond, contain, escalate, investigate, and coordinate mitigation of security events relative to anomalies detected and escalated by the Cyber Fusion Centre (CFC) according to Experian’s Incident Response Plan. This team member will join a new, growing team of specialized, advanced responders to support escalations of complex or prioritized matters from Experian’s existing 24×7 security monitoring and response functions responsible for responding to and analysing security incidents involving threats targeting Experian information assets. These threats may include phishing, malware, network attacks, and suspicious activity. You will also work with end-users, partners, technical support teams, and management to ensure remediation and recovery from these threats. Use analytics and data collected from endpoints, environmental logging, and a variety of other sources to maximize containment and eradication of threats, while expediting recovery of the business. Please note you will have a regular Monday – Friday schedule and an expectation to participate in an on-call schedule or work outside of normal work hours to manage cybersecurity incidents. You will report to the CFC Senior Director of Incident Management and Security Operations.
Main Responsibilities include:
Conduct advanced incident response activities to investigate and contain complex and larger-scale cybersecurity matters (such as potential major severity incidents).
In the event of investigative matters requiring additional analytical support from teams such as Forensics and Cyber Threat Hunt, work across the teams and hold responsibility for expressing the CFC’s overall understanding of the timeline of attacker activity so that appropriate containment and remediation actions can be coordinated.
Respond to cybersecurity events and alerts associated with threats, intrusions, and compromises per any applicable SLOs.
Manage multiple cases related to security incidents throughout the incident response lifecycle; including Analysis, Containment, Eradication, Recovery, and Lessons Learned.
Maintain case documentation, including notes, analysis findings, containment steps, and cause for each assigned security incident.
Maintain an understanding of common Operating Systems (Windows, Linux, Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies).
Interpret device and application logs from a variety of sources (e.g., Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify cause and determine next steps for containment, eradication, and recovery.
Provide Advanced Support to analysts (Logs review, IP Block questions). Mentor other analysts (process questions, tool usage).
Qualifications
Experience working within a Security Operations Center or Cyber Security Incident Response Teams may be accepted in lieu of this education requirement.
Must have knowledge of network protocols (TCP/IP, UDP, ICMP), standard protocols (HTTP/S, DNS, SSH, SMTP, SMB), wireless networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls).
Experience with commercial and open-source SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK).
Have a demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs).
Exhibit skills using common Incident Response and Security Monitoring applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR), WAF, IPS.
Additional Information
Benefits package includes:
Flexible work environment, working hybrid or in the office if you prefer.
Great compensation package and discretionary bonus plan.
Core benefits include pension, Bupa healthcare, sharesave scheme and more.
25 days annual leave with 8 bank holidays and 3 volunteering days. You can purchase additional annual leave.
Experian is proud to be an Equal Opportunity and Affirmative Action employer. Innovation is an important part of Experian’s DNA and practices, and our diverse workforce drives our success. Everyone can succeed at Experian and bring their whole self to work, irrespective of their gender, ethnicity, religion, colour, sexuality, physical ability, or age. If you have a disability or special need that requires accommodation, please let us know at the earliest opportunity.
#LI-Hybrid
Experian Careers – Creating a better tomorrow together
Apply For Job
#J-18808-Ljbffr
