Najnowsze oferty pracy

  • Analityk / Analityczka bezpieczeństwa IT (SOC)

    PKP CARGO S.A.   Kraków    praca stacjonarna
    specjalista junior / mid / senior  umowa o pracę  pełny etat
    1 dni
    Wyzwania, jakie na Ciebie czekają: Monitorowanie zdarzeń cyberbezpieczeństwa w czasie rzeczywistym; Wyszukiwanie zależności pomiędzy zdarzeniami, kategoryzowanie zdarzeń; Zbieranie kluczowych informacji, ich analiza i interpretacja w celu eskalacji do odpowiednich linii wsparcia; Przyjmowanie...
  • DevOps Engineer

    JTI GBS Poland sp. z o.o.   Warszawa    praca hybrydowa
    specjalista (mid)  umowa o pracę  pełny etat
    2 dni
    Position: Purpose of the position is to provide DevOps services for the rapidly expanding JTI Ecommerce & Digital Ecosystem. The current position covers the following objectives/tasks: Responsible for ensuring that JTI DevOps standards and policies are followed within DES. Responsible for ensuring...
  • Analityczka / Analityk ds. analiz i modelowania cyberzagrożeń

    PKO Bank Polski   Warszawa, Chmielna 89    praca stacjonarna
    specjalista mid / senior / ekspert  umowa o pracę  pełny etat
    2 dni
    Na co dzień w naszym zespole:wykrywasz i badasz potencjalne zagrożenia oraz tworzysz nowe pomysły ich wykrywania,• wyszukujesz oznak ataków oraz niepożądanej obecności w infrastrukturze naszego Banku,analizujesz i badasz metody ataków w tym technik, scenariuszy i narzędzi, wraz z...
  • Data Protection Lead

    Aon   Kraków    praca hybrydowa
    kierownik/koordynator / menedżer  umowa o pracę  pełny etat
    8 dni
    Responsibilities: Oversees the status of DP compliance and carries out the operational aspects of the mitigation plans to meet Aon's DP requirements; Works with BUs to maintain and update records of processing activities (RPA), conducts annual reviews in line with Aon procedures, ensures the...
Zobacz więcej ofert pracy

IT Security Team Lead

Kennametal
lubuskie
starszy specjalista (senior) / ekspert
pełny etat
umowa o pracę
praca zdalna
928 dni temu

Kennametal jest światowym liderem w dostarczaniu rozwiązań z zakresu narzędzi specjalistycznych wysokiej jakości, w tym narzędzi do obróbki skrawaniem, narzędzi tokarskich, frezarskich, wiertarskich. Naszym Klientom oferujemy szeroką gamę produktów, a także wsparcie techniczne.

IT Security Team Lead
Miejsce pracy: woj. lubuskie
Nr ref.: 37021


 

The Security Operations Center Team Lead conducts essential cyber security incident handling activities for Kennametal. This is accomplished by leading security monitoring and incident response activities, including conducting event and incident analysis, and coordinating incident containment and remediation actions. In addition, the SOC Manager is instrumental in cyber threat and vulnerability analysis and response. The jobholder will be responsible for coordinating work across the Kennametal Security Operations Center to receive alerts and determine appropriate action, shaping detection criteria and developing operational guidelines.

We are open to any location in the country, as it is a fully remote job from Poland.

 

Major tasks and responsibilities

  • Serve as a senior-level technical resource for cyber security incident handling
  • Manage junior CSIRT/SOC team members
  • Support the Kennametal Managed Security Service Provider relationship
  • Provide qualified guidance on and coordinate execution of identification, analysis, response and monitoring of cyber threat and vulnerabilities

Incident Management and Monitoring

  • Manage Security incidents. Assist in developing concepts for efficient and effective security response activities.
  • Be a trusted point of contact and expertise for incidents and manage all the incident response activities including escalation to upper management.
  • Provide qualified guidance on SOC alerting conditions and necessary data sources
  • Note: this role requires some on-call duty

Vulnerability Management

  • Analyze and interpret results of vulnerability management activities using standard frameworks (CVSS)
  • Research and investigate new and emerging vulnerabilities, to include 0Day events
  • Identify and resolve false positive findings in assessment results
  • Assess compensating controls and validate their effectiveness
  • Partner with stakeholders to streamline, standardize and document vulnerability remediation procedures
  • Monitor vulnerability remediation activities
  • Integrate information from disparate sources and create tactical intelligence that is relevant to protecting the business.

Threat Management

  • Research and investigate new and emerging cyber threats and vulnerabilities through participation in external security communities.
  • Manage the collection, analysis, and dissemination of cybersecurity threat information, including controlling the quality of intelligence suppliers
  • Manage relationships with global stakeholders to identify business needs and design appropriate security controls.
  • Analyze and interpret threat information using standard frameworks (Cyber Kill Chain, MITRE ATT&CK framework)
  • Generate timely business cyber threat intelligence assessment reports to business owners and management stakeholders
  • Generate timely technical cyber threat intelligence assessment reports to IT management and stakeholders

Other Areas of Effort

  • Support the achievement of the Global IT Strategy
  • Support efforts related to the corporate Enterprise Security Dashboard

Requirements:

  • Master’s degree in information assurance (or related field) with minimum of 5 years’ experience or B.S in information assurance (or related field) with minimum of 10 years’ experience on a computer security incident response team
  • Expertise of security concepts and best practices related to incident management, threat and vulnerability management
  • Practical experience with identifying, analyzing, and communicating cyber threat and vulnerability information
  • Experience with key SOC technologies (SIEM, EDR, TIP, others)
  • Experience applying threat and vulnerability analyses models, including the LM Cyber Kill Chain, the Diamond Model of Intrusion Analysis, the MITR
  • ATT&CK Framework and the Common Vulnerability Scoring System (CVSS)
  • Experience with incident response within cloud environments
  • Understanding of ITIL/ service management concepts
  • Familiarity with enterprise risk management and how cyber threats and vulnerabilities integrate into ERM efforts
  • Exemplary verbal and written communication skills (English business fluent spoken and written)
  • Demonstrated ability to think strategically and perform detailed, complex analysis and data interpretation
  • Intercultural experience
  • Proven project management experience
  • Effective interpersonal skills, out-of-the-box thinking and ability to interface with all levels of staff
  • Ability to work under pressure and deal with ambiguous situations

What we offer 

  • Multisport A card that enables free entrance to gyms
  • Lunch pass A card pre-payed monthly for paying in restaurants
  • Remote working
  • Medicover Private healthcare combining high-quality specialists and fast lane Vs public services
Prosimy o dopisanie klauzuli: Wyrażam zgodę na przetwarzanie moich danych osobowych dla potrzeb niezbędnych w procesie rekrutacji.
 

Podobne oferty

  • Analityk / Analityczka bezpieczeństwa IT (SOC)

    PKP CARGO S.A.   Kraków    praca stacjonarna
    specjalista junior / mid / senior  umowa o pracę  pełny etat
    1 dni
    Wyzwania, jakie na Ciebie czekają: Monitorowanie zdarzeń cyberbezpieczeństwa w czasie rzeczywistym; Wyszukiwanie zależności pomiędzy zdarzeniami, kategoryzowanie zdarzeń; Zbieranie kluczowych informacji, ich analiza i interpretacja w celu eskalacji do odpowiednich linii wsparcia; Przyjmowanie...
  • DevOps Engineer

    JTI GBS Poland sp. z o.o.   Warszawa    praca hybrydowa
    specjalista (mid)  umowa o pracę  pełny etat
    2 dni
    Position: Purpose of the position is to provide DevOps services for the rapidly expanding JTI Ecommerce & Digital Ecosystem. The current position covers the following objectives/tasks: Responsible for ensuring that JTI DevOps standards and policies are followed within DES. Responsible for ensuring...
  • Analityczka / Analityk ds. analiz i modelowania cyberzagrożeń

    PKO Bank Polski   Warszawa, Chmielna 89    praca stacjonarna
    specjalista mid / senior / ekspert  umowa o pracę  pełny etat
    2 dni
    Na co dzień w naszym zespole:wykrywasz i badasz potencjalne zagrożenia oraz tworzysz nowe pomysły ich wykrywania,• wyszukujesz oznak ataków oraz niepożądanej obecności w infrastrukturze naszego Banku,analizujesz i badasz metody ataków w tym technik, scenariuszy i narzędzi, wraz z...
  • Data Protection Lead

    Aon   Kraków    praca hybrydowa
    kierownik/koordynator / menedżer  umowa o pracę  pełny etat
    8 dni
    Responsibilities: Oversees the status of DP compliance and carries out the operational aspects of the mitigation plans to meet Aon's DP requirements; Works with BUs to maintain and update records of processing activities (RPA), conducts annual reviews in line with Aon procedures, ensures the...