Current jobs related to Team Lead, Incident Response - Vancouver - Sophos
-
Product Security Incident Response Team Lead
2 weeks ago
Vancouver, British Columbia, Canada SAP Full timeAbout SAPSAP is a leading provider of enterprise application software and related services. Our mission is to help organizations run better by providing innovative solutions that enable them to operate more efficiently, adapt to changing market conditions, and grow sustainably.Job SummaryWe are seeking a highly skilled and experienced Product Security...
-
Product Security Incident Response Team Lead
2 weeks ago
Vancouver, British Columbia, Canada SAP Full timeAbout SAPSAP is a leading provider of enterprise application software and related services. Our mission is to help organizations run better by providing innovative solutions that enable them to operate more efficiently, adapt to changing market conditions, and grow sustainably.Job SummaryWe are seeking a highly skilled and experienced Product Security...
-
Incident Response Lead
2 weeks ago
Vancouver, British Columbia, Canada Aon Full timeJob SummaryAon is seeking a highly skilled Cybersecurity Manager to join our team. As a key member of our Cybersecurity team, you will be responsible for managing high-profile and sophisticated cases as a first responder.Key ResponsibilitiesManage the most sophisticated forensic analyses handled by the firm.Investigate network intrusions and other...
-
Incident Response Lead
2 weeks ago
Vancouver, British Columbia, Canada Aon Full timeJob SummaryAon is seeking a highly skilled Cybersecurity Manager to join our team. As a key member of our Cybersecurity team, you will be responsible for managing high-profile and sophisticated cases as a first responder.Key ResponsibilitiesManage the most sophisticated forensic analyses handled by the firm.Investigate network intrusions and other...
-
Security Engineer-Incident Response Team
4 months ago
Vancouver, Canada Autodesk Full timePosition Overview The Security Incident Response Engineer is responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment, and analyze, triage, and report on these incidents and investigations for us. You have knowledge of system security design, network/cloud...
-
Security Incident Response
3 months ago
Vancouver, Canada Autodesk Full timeJob Requisition ID # - 24WD76733 Position Overview **Responsibilities**: - Responsible for handling day-to-day operations to monitor, identify, triage and investigate security events from various Endpoint Detection and Response (EDR), Network and Cloud security tools; with the ability to detect anomalies, and report remediation actions in both our...
-
Cybersecurity Incident Response Lead
2 weeks ago
Vancouver, British Columbia, Canada Aritzia Full timeAbout the RoleThe Senior Engineer, Threat & Vulnerability, is a critical member of our Cybersecurity team, responsible for investigating and mitigating security threats to Aritzia's infrastructure.Key ResponsibilitiesInvestigate security incidents or vulnerabilities reported by third parties or external security researchers.Respond to vulnerability reports...
-
Cybersecurity Incident Response Lead
2 weeks ago
Vancouver, British Columbia, Canada Aritzia Full timeAbout the RoleThe Senior Engineer, Threat & Vulnerability, is a critical member of our Cybersecurity team, responsible for investigating and mitigating security threats to Aritzia's infrastructure.Key ResponsibilitiesInvestigate security incidents or vulnerabilities reported by third parties or external security researchers.Respond to vulnerability reports...
-
Incident Response Manager
1 month ago
Vancouver, British Columbia, Canada NTT DATA Services Full timePosition ID: NTT DATA Services is committed to attracting outstanding, innovative, and dedicated professionals who are eager to advance their careers with us. We are currently seeking an Incident Response Manager to become a vital part of our organization.Key Responsibilities:As an Incident Response Manager, you will be responsible for overseeing the...
-
Security Incident Response Engineer
6 hours ago
Vancouver, British Columbia, Canada Autodesk Full timeJob Title: Security Incident Response EngineerJob Summary:The Security Incident Response Engineer will be responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role will work closely with the threat hunting and intelligence team to execute strategic...
-
Security Incident Response Engineer
3 hours ago
Vancouver, British Columbia, Canada Autodesk Full timeJob Title: Security Incident Response EngineerJob Summary:The Security Incident Response Engineer will be responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role will work closely with the threat hunting and intelligence team to execute strategic...
-
Security Incident Response Engineer
7 days ago
Vancouver, British Columbia, Canada Autodesk Full timeJob Title: Security Incident Response EngineerJob Summary:The Security Incident Response Engineer will be responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role will work closely with the threat hunting and intelligence team to execute strategic...
-
Security Incident Response Engineer
1 week ago
Vancouver, British Columbia, Canada Autodesk Full timeJob Title: Security Incident Response EngineerJob Summary:The Security Incident Response Engineer will be responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role will work closely with the threat hunting and intelligence team to execute strategic...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Vancouver, British Columbia, Canada Autodesk Full timeJob SummaryThe Cybersecurity Incident Response Specialist will be responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role will analyze, triage, and report on these incidents and investigations for Autodesk.Key ResponsibilitiesMonitor and analyze...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Vancouver, British Columbia, Canada Autodesk Full timeJob SummaryThe Cybersecurity Incident Response Specialist will be responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role will analyze, triage, and report on these incidents and investigations for Autodesk.Key ResponsibilitiesMonitor and analyze...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Vancouver, British Columbia, Canada Autodesk Full timeJob SummaryThe Security Incident Response Engineer is a critical member of our team, responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role requires a strong understanding of system security design, network/cloud security best practices, and in-depth...
-
Cybersecurity Incident Response Specialist
2 weeks ago
Vancouver, British Columbia, Canada Autodesk Full timeJob SummaryThe Security Incident Response Engineer is a critical member of our team, responsible for monitoring, identifying, assessing, containing, and responding to various information security events in a large and complex environment. This role requires a strong understanding of system security design, network/cloud security best practices, and in-depth...
-
Vancouver, British Columbia, Canada British Columbia Securities Commission Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Governance and Incident Response Specialist to join our team at the British Columbia Securities Commission. As a key member of our Technology and Project Services department, you will play a critical role in managing and responding to security incidents, maintaining procedures for cyber security...
-
Vancouver, British Columbia, Canada British Columbia Securities Commission Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Governance and Incident Response Specialist to join our team at the British Columbia Securities Commission. As a key member of our Technology and Project Services department, you will play a critical role in managing and responding to security incidents, maintaining procedures for cyber security...
-
Vancouver, British Columbia, Canada BCSC Inquiries Group Full timeJob SummaryWe are seeking a highly skilled IT Security Governance and Incident Response Analyst to join our team at the BC Securities Commission. As a key member of our organization, you will be responsible for developing, implementing, and enforcing our IT security policies and procedures.Main ResponsibilitiesSecurity Policy Development and...
Team Lead, Incident Response
4 months ago
What You Will Do
- Maintain supervision over operational tasks and provide day-to-day oversight for Incident Response Analysts and Incident Leads
- Oversee analysts in their investigation and response activities when security incidents arise to determine possible cause and resolution
- Effectively communicate information to stakeholders of all levels
- Demonstrate experience in network and host-based intrusion analysis, incident response processes and procedures, digital forensics and/or handling malware
- Successfully executing incident handling procedures as well as direct response to cyber security incidents
- Maintaining current knowledge and recognition of attacker tools, tactics, and procedures to produce indicators of compromise (IOCs) that can be utilized during active and future investigations
- Assessing cyber threat intelligence/open source intelligence and operationalizing that information
- Demonstrating real-world, hands-on experience dealing with sophisticated malware and dynamic cyber threat actors
What You Will Bring
- 3+ years of experience within a cybersecurity environment; experience in a leadership role is preferred
- Experience in a security operations center, or similar environment, and identifying indications of compromise or attack and responding to incidents
- Bachelor’s in information technology, Computer Science or a related field; or relevant, commensurate work experience
- Endpoint and network security experience required; IDS, IPS, EDR, ATP, Malware defenses and monitoring experience
- Threat hunting experience preferred
- Knowledge of common adversary tactics and techniques, e.g., obfuscation, persistence, defense evasion, etc.
- Knowledge of Mitre ATT&CK framework preferred
- Working knowledge of incident response procedures
- Experience with SQL query construction preferred
- Experience with OSQuery is a plus
- Experience administering and supporting Windows OS (both workstations and server) and one of the following: Apple or Linux-based operating systems (e.g. XP, Windows 7, 2003, 2008, OS X)
- Fundamental understanding of network traffic analysis including TCP/IP, routing, switching, protocols, etc.
- Strong understanding of Windows event log analysis
- Experience with enterprise information security data management - SIEM experience a plus
- Programming and scripting skills - proficient knowledge of PowerShell is a plus
- Excellent troubleshooting and analytical thinking skills
- Strong documentation and communication skills
- Advanced Cyber Security certifications preferred but not required
- Excellent customer service skills
- Passion for all things information technology and information security
- Natural curiosity and ability to learn new skills quickly
- Ability to think outside the box
- Innovative mindset
B1
LI-JM1
LI-Remote
What's Great About Sophos?
- Our people - we innovate and create, all of which are accompanied by a great sense of fun and team spirit
- Employee-led diversity and inclusion networks that build community and provide education and advocacy
- Annual charity and fundraising initiatives and volunteer days for employees to support local communities
- Global employee sustainability initiatives to reduce our environmental footprint
- Global fitness and trivia competitions to keep our bodies and minds sharp
- Global wellbeing days for employees to relax and recharge
- Monthly wellbeing webinars and training to support employee health and wellbeing
Our Commitment To You
We’re proud of the diverse and inclusive environment we have at Sophos, and we’re committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants that can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know.
Data Protection
