Principal CSIRT Regional Lead

What you will be doing...

At Verizon we believe technology should help you achieve more, and we help businesses do exactly that on a daily basis. Business is getting digitalized, organisations are using cloud services, and traditional cyber security methods are becoming less effective. To help organisations handle new cyber security threats, Verizon has a Global Computer Security Incident Response Team (CSIRT).

As a Principal CSIRT Regional Lead, you will drive the CSIRT service in EMEA. You will act as a liaison between customers and the CSIRT service and will be responsible to build and maintain strategic relationships with key stakeholders and help our customers achieve their desired service objectives. You are a subject matter expert in the field of cyber security incident response. Other responsibilities include:

• Supporting CSIRT presales and growing CSIRT business in the region.
• Overseeing the status of each account in his/her region to retain and grow business with existing engagements.
• Developing and improving service offerings, including service offering artifacts, delivery methodologies, and oversight governance structures.
• Ensuring resource availability for individual accounts.
• Ensuring communication and information exchange is fluent between accounts and regions.
• Ensuring customer expectations are fully understood, met, or exceeded.
• Serving as the single point of contact for incidents and escalations.
• Coordinating monthly status calls.
• Defining and establishing CSIRT services to new accounts.
• Contributing to containment decisions of critical incidents and facilitating decision making by other parties using established escalation processes.
• Coordinating forensics and other activities with law enforcement agencies.
• Verifying the effectiveness of CSIRT services with regions.
• Analysing IR efforts and performing regular “lessons learned” exercises with feedback from customers and third parties.
• Using results analysis as an input for improvements (e.g., incident response).
• Developing metrics to illustrate risk reduction over time.
• Following and maintaining excellent relationships with other Verizon service owners.

What we’re looking for...

You’ll need to have:

• Bachelor's degree or relevant work experience.
• Experience in security operations, risk management, operational management, and/or people management.
• Experience managing Security or Incident Response projects.
• Willingness to travel 51 – 75%.

Even better if you have…

• Bachelor’s degree in Computer Science or relevant work experience.
• Experience with SIEM (ideally Splunk), log analysis, and big data.
• Relevant industry certifications (e.g., SANS, GCIA, GCIH, GREM, GPEN, CEH).
• CISSP and CISM certifications.
• ITIL certification.
• PMP certification.
• ISO 27001 certification
• Knowledge of Security Operation Centre (SOC) processes.
• Knowledge of how to structure and operate an efficient threat information collection, threat hunting, and incident response process.
• Knowledge of common types of malware, their infection vectors, how to identify them using network and host based tools, and how to eradicate them and verify the success of eradication efforts.
• Experience with current security threats, vulnerabilities, detection awareness, and mitigation solutions.
• The ability to understand the potential impact, translate, and communicate clearly at the C-level.
• Knowledge of modern technologies used to detect malware and vulnerabilities and protect assets.
• Knowledge of modern network and cloud technologies.
• Strong communication skills and the ability to engage with customers at both technical and executive levels.
• The ability to produce quality documentation.
• Strong problem-solving and security analytics skills, coupled with the ability to identify process gaps and make mitigation improvement recommendations.
• Strong leadership skills.
• The ability to take a proactive approach to customer issues.
• The ability to thrive in a dynamic, high-pressure environment.
• A background in information or cyber security with a strong focus on incident response development, deployment, and management.
• Strong coordination, communication, and collaboration skills.
• Strong technical and architectural experience.
• Strong written and verbal communication skills, including in the English language, including the ability to produce quality documentation.

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.