Cybersecurity Operations Operations Engineer/Incident Response Team Lead
Booz Allen Hamilton Inc.
Abu Dhabi
منذ 21 يوم

Cybersecurity Operations Operations Engineer / Incident Response Team Lead

Key Role :

Direct staff, including direct and indirect reports in conducting event detection, incident triage, incident handling, and hunting consulting services throughout the MENA region.

Provide thought leadership for client security tool deployment and implementation. Consult and direct Cybersecurity services for intrusion detection systems, firewalls, boundary protection devices, and security incident management products deployed in client spaces.

Provide staff and client training and management activities for intrusion attempts and compromises. Provide briefings regarding ongoing client security incidents for various levels of management and develop and coordinate the shift schedule and deployment of staffing within client organizations.

Direct the monitoring and analysis of threat network activities and exploit capabilities using multiple open source intelligence assets.

Provide guidance and direction on the development and tuning of Cyber rule sets and alerts to enhance detection and prevention zone technologies in client spaces.

Basic Qualifications :

  • Experience with incident response and handling
  • Experience in two or more of the following fields : security products and technologies, security engineering, networking protocols and data center, and security analysis and investigations
  • Experience in working with Cybersecurity tools and software, including Splunk, OSSEC, and McAfee security products
  • Experience with project management
  • BA or BS in Engineering, CS, Information Security, or Information Systems and 5 years of experience in a senior-level IR analyst or IR management role, including IR shift manager or MA or MS degree in Engineering, CS, Information Security, or Information Systems and 3 years of experience in a senior-
  • level IR analyst or IR management role, including IR shift manager

    Additional Qualifications :

  • Experience with managing a multi-tenant SOC
  • Ability to deep dive issues and maintain focus
  • Ability to be active in the training, coaching, and development of a team
  • Security Certifications, including Security+, CEH, GCIA, GCIH, or CISSP
  • Information Systems Security Management Professional (ISSMP) Certification
  • We’re an EOE that empowers our people no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status to fearlessly drive change.


    قدِّم طلب ترشيحك
    أضف الى المفضلات
    إزالة من الإشارات المرجعية
    قدِّم طلب ترشيحك
    بريدي الالكتروني
    بالنقر فوق "متابعة"، عطي نيوفو الموافقة على معالجة بياناتي وإرسال تنبيهات البريد الإلكتروني لي، وفقًا لسياسة الخصوصية الخاصة بنيوفو. يمكنني إلغاء اشتراكي أو سحب موافقتي في أي وقت.
    استمارة الطلب