Principal Incident Response Consultant- RSA IR Practice_175584BR
Why Work at Dell?
Endless challenges and rewards. Opportunities on six continents. A team of colleagues fueled by collaboration. All this, and a company deeply committed to integrity and responsibility.
RSA, The Security Division of Dell, is the premier provider of security solutions for business acceleration, helping the world's leading organizations succeed by solving their most complex and sensitive security challenges. RSA's information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle ? no matter where it moves, who accesses it or how it is used.We would like to speak with candidates interested in being part of the Network Security Incident Response Team, leveraging the NetWitness product line. NetWitness? is a revolutionary network monitoring platform that provides enterprises a precise and actionable understanding of everything happening on the network. NetWitness solutions are deployed in customer environments to solve a wide range of challenging information security problems including: insider threats, zero-day exploits and targeted malware, advanced persistent threats, fraud, espionage, data leakage, and continuous monitoring of security controls.Job DescriptionThe IR consultant provides RSA customers with rapid tactical insight into the activities taking place on their networks. Through the capture and expert analysis of live network traffic utilizing the NetWitness NextGen platform the consultant determines the overall state of the network and identifies and reports all areas of concern. Performs research and develops techniques to identify and mitigate threats. Stays abreast of emerging threats and develops creative solutions to solve customer issues. Responsibilities: Conduct incident response engagements. Summarize and report findings to key stakeholders. Incident response subject matter expert, Project management Mentor junior staff members Required Skills and Experience: Excellent written/verbal communication and interpersonal skills, Network traffic analysis, Network Forensics & Host Forensics Experience. Malware reverse engineering techniques and tools desired. Ability to distill complex technical concepts into business terms that decision makers can use to quickly take action. Expert level knowledge of typical attack vectors and system penetration techniques Advanced Linux/Windows skills Familiar with NIST guidelines (800-61, 800-86) Understanding of Network Protocols and security infrastructure (proxies, firewalls, email filtering technologies, and network intrusion detection systems) Desired Skills: Experience with tools such as RSA NetWitness, enCase, FTK, Mandiant, WireShark, OllyDbg, IDAPro or similar network monitoring, packet capture and analysis, networks forensics and analysis tools. Incident Response Engagement Consulting Experience Desired Instruction Detection Systems / Intrusion Prevention Systems / SIEM Tools Experience and Education Qualifications: 3 or more years in incident response role. BS/MS in Computer Science or equivalent experience Certifications in any of these areas (GIAC, CEH, CISSP, GCIH, GREM, GCIA, GPEN, GCFE, etc) Active top secret security clearance is preferred, not required Travel Up to 60% Travel Dell is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity and/or expression, national origin, protected veteran status, disability, genetics, or citizenship status (when otherwise legally authorized to work) and will not be discriminated against on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we operate. Dell encourages applicants of all ages.
Job Family: Professional Services
Job ID: R08216