Incident Response and Digital Forensics Manager
1 week ago
Avoiding Cyber Threats through Effective Incident Response
At AVEVA Denmark, we strive to create innovative technologies that empower our customers to engineer a better world. As a leading provider of industrial software solutions, we understand the importance of protecting our systems and data from cyber threats.
The DFIR Manager will oversee a team of expert Digital Forensic Responders and Incident Response analysts responsible for identifying and mitigating potential cyber threats. This includes coordinating response activities across Cyber Security Response teams and with key stakeholders to ensure effective incident response and recovery.
Key Responsibilities:
- Team Leadership: Manage and supervise Cyber Security Response Analyst team to proactively identify, investigate, and hunt potential attacks and security risks on AVEVA networks and systems using various platform dashboards and threat feeds.
- Security Event Analysis: Manage and supervise Cyber Security Response Analyst team on analysis of security events as detected by various security controls, monitoring, and recording security events in daily, weekly, monthly, and quarterly reports.
- Cyber Threat Hunting: Manage and supervise Cyber Security Response Analyst team on analysis of escalated security events, notifications, and alerts from managed Security Operation Centre (SOC).
- Digital Forensic Analysis: Manage and supervise Digital Forensic Responder on incident triage process through the examination and analysis of digital evidence and artifacts.
- Forensic Collection and Analysis: Manage and supervise Digital Forensic Responder on e-discovery and forensic processes to include identification, collection, preservation, and processing of relevant incident data.
- Malware Analysis and Reverse Engineering: Manage and supervise Digital Forensic Responder on immediate host-based and network-based forensic examinations and malware reverse engineering on security incidents to determine the root cause and to reconstruct a timeline of events to facilitate incident response and recovery.
- Technology Standard Certification: Supervise Digital Forensic Responder to conduct forensic collection and analysis of all supported devices, including but not limited to Linux, Windows, and Apple workstations, servers, as well as iOS and Android mobile devices, both online and offline, in support of the AVEVA Incident Response process.
- Information Security Operations: Supervise and collaborate with Cyber Security DFIR team on creating and maintaining information security operations process, procedure, and checklist documentation, such as incident response plan and playbook.
- Incident Response Framework: Supervise and collaborate with Cyber Security DFIR team on incident response using AVEVA defined Security Incident Response framework such as NIST.
- Reporting and Communication: Reports to Security Incident Manager on concerning security events, incident trends, residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance.
- Collaboration and Stakeholder Management: Works with the AVEVA Infrastructure Operations team and any required partners/business functions such as R&D to resolve security events, incidents, and service requests.
- Compliance and Governance: Ensures Cyber Security DFIR team comply with security processes and procedures and supports service-level agreements (SLAs) to ensure that security controls are managed and maintained.
- Security Awareness and Training: Contributes through security advisories, blogs, and other communication channels on current and emerging security threats to AVEVA assets and people via the security awareness program.
- Reactive Support: Be available to provide reactive support to critical security incidents outside standard business hours as part of a rota.
Required Skills and Qualifications:
- Leadership and Technical Expertise: Minimum two (2) years of experience leading or managing technical teams in following subject areas: vulnerabilities, exploitation, and remediation, network traffic and node analysis, Insider Threat, ransomware, supply-chain attacks, data exfiltration, web-focused security topics, persistent Threat (APT), Spear Phishing, and credential compromise techniques.
- Cyber Security Experience: Minimum of five years information and cyber security experience as Security Analyst and Incident Response, Security Threat Hunting, or Security Operations Centre analyst role.
- Educational Background: Bachelor's degree in information systems or equivalent work experience in relevant information and cyber security domain.
- Professional Certifications: Security certification from a recognized organization such as ISC2, CompTIA, ECouncil, SANS Institute is an advantage.
- Technical Standard Certification: Technology standard certification such as from Cisco, VMware, Microsoft is an advantage.
- Cloud Computing Environment: Familiarity with cloud computing environments such as Microsoft Azure.
- Security Operations Centre: Familiarity with Security Operations Centers (SOC).
- Incident Response Experience: Experience responding to incidents, developing (and seeing through to completion) remediation plans, creating and formalizing incident response program processes and procedures and working cross-functionally with teams outside of security to accomplish enterprise security goals.
- Interpersonal and Stakeholder Management Skills: Excellent interpersonal and group dynamic skills.
- Exceptional Stakeholder Management Skills: Exceptional stakeholder management skills.
- Mitre ATT&CK Framework: Awareness of the Mitre ATT&CK framework and how it can be used to learn an adversary's tactics and techniques and focus incident response.
- SIEM and Log Data Analysis: Experience using Security Information and Event Management (SIEM) and analyzing log data sources.
- Information Risk Concepts and Principles: Knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls.
- Security Process Development and Documentation: Knowledge and experience in developing and documenting security processes and plans.
-
Digital Forensic and Incident Response
2 weeks ago
Kuala Lumpur, Kuala Lumpur, Malaysia AVEVA Denmark Full timeDigital Forensic and Incident Response (DFIR) Manager APACApply locations Kuala Lumpur, Malaysia time type Full time posted on Posted Yesterday job requisition id R010285AVEVA is a global leader in industrial software. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure,...
-
Kuala Lumpur, Kuala Lumpur, Malaysia Nestlé SA Full timeNestlé SA seeks a talented Digital Forensics Specialist to join our team, focusing on digital forensics and incident response. This role involves performing forensic investigations of cyber events, insider risk, and misconduct activity; supporting Legal, Compliance, HR, and Audit teams with internal investigations and conducting forensic analyses of...
-
Kuala Lumpur, Kuala Lumpur, Malaysia Crypto Full timeAbout the JobWe are looking for a Digital Forensics and Incident Response Manager to join our Global Cybersecurity Services Team. The role will focus on leading projects and initiatives that may involve - Endpoint Security enhancements, Threat Hunting, Compromise Assessments, Network/Endpoint security reviews, etc.The ideal candidate will have experience in...
-
Kuala Lumpur, Kuala Lumpur, Malaysia AVEVA Denmark Full timeA World-Class Incident Response TeamAVEVA is a global leader in industrial software, with cutting-edge solutions used by thousands of enterprises to deliver the essentials of life. Our mission is to enable our customers to engineer a better world.The DFIR Manager will lead a team of Digital Forensic Responders and Incident Response analysts to develop a...
-
Kuala Lumpur, Kuala Lumpur, Malaysia Nestlé SA Full timeNestlé SA is a global leader in the food and beverage industry, dedicated to enhancing the quality of life and contributing to a healthier future. Our commitment to excellence drives us to seek talented individuals who share our values.We are looking for a Digital Forensics Specialist to join our team, focusing on performing forensic investigations of cyber...
-
Kuala Lumpur, Kuala Lumpur, Malaysia AVEVA Denmark Full timeDeveloping a World-Class Incident Response CapabilityWe are seeking a highly experienced Digital Forensics and Incident Response (DFIR) Manager to join our team at AVEVA Denmark. As a global leader in industrial software solutions, we understand the importance of protecting our systems and data from cyber threats.The successful candidate will lead a team of...
-
Digital Forensics Consultant
1 day ago
Kuala Lumpur, Kuala Lumpur, Malaysia S-RM Intelligence and Risk Consulting Full timeS-RM Intelligence and Risk Consulting is a global consultancy that provides intelligence and cyber security services to a wide range of clients. Our team of experts helps clients solve complex information security challenges.The Job ResponsibilitiesWe are seeking an experienced Digital Forensics Consultant to join our Incident Response team in Kuala Lumpur....
-
Incident Response Team Lead
1 day ago
Kuala Lumpur, Kuala Lumpur, Malaysia S-RM Intelligence and Risk Consulting Full timeS-RM Intelligence and Risk Consulting is a leading provider of intelligence and cyber security services. Our team of experts works with clients to solve complex information security challenges.The Job DescriptionWe are seeking an experienced Incident Response Team Lead to join our Cyber Security division in Kuala Lumpur. As a key member of our team, you will...
-
Kuala Lumpur, Kuala Lumpur, Malaysia AVEVA Denmark Full timeFostering a Culture of Cybersecurity ExcellenceWe are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business.The successful candidate will have the...
-
Incident Response Manager
2 weeks ago
Kuala Lumpur, Kuala Lumpur, Malaysia Fortinet, Inc. Full timeAbout This OpportunityFortinet is looking for an experienced Incident Response Manager to lead our team in providing world-class incident response and forensics services.This role requires a high level of expertise in cybersecurity, incident response, and forensic analysis. You will be working closely with our team to develop and implement strategies to...
-
Digital Forensics Investigator
1 week ago
Kuala Lumpur, Kuala Lumpur, Malaysia Ensign InfoSecurity Full timeJob DescriptionThe Digital Forensics Investigator at Ensign InfoSecurity is responsible for conducting thorough investigations of security incidents to identify root cause and impact.Responsibilities include:Collecting and analyzing digital evidence from various sources, including computers, networks, and mobile devices.Using specialized tools and techniques...
-
Incident Management Lead
1 day ago
Kuala Lumpur, Kuala Lumpur, Malaysia S-RM Intelligence and Risk Consulting Full timeAbout S-RM Intelligence and Risk Consulting: We are a global intelligence and cyber security consultancy that has been helping clients solve complex information security challenges since 2005. Our outstanding people are committed to developing sharp, curious, driven individuals who want to think critically, solve complex problems, and achieve success.The...
-
Kuala Lumpur, Kuala Lumpur, Malaysia S-RM Intelligence and Risk Consulting Full timeAssociate (Forensics Lead), Incident Response APACS-RM is seeking an Associate to work within the Cyber Security Team in Kuala Lumpur.S-RM is a global intelligence and cyber security consultancy. Since 2005, we've helped some of the most demanding clients in the world solve some of their toughest information security challenges.We've been able to do this...
-
Cyber Security Response Specialist
1 day ago
Kuala Lumpur, Kuala Lumpur, Malaysia S-RM Intelligence and Risk Consulting Full timeJob Summary: We are seeking a highly skilled Cyber Security Response Specialist to join our team in Kuala Lumpur. The successful candidate will be responsible for leading incident response efforts, conducting forensic investigations, and providing containment and recovery advice to clients.About the Role: As a Cyber Security Response Specialist, you will be...
-
Forensic Cyber Security Specialist
1 day ago
Kuala Lumpur, Kuala Lumpur, Malaysia S-RM Intelligence and Risk Consulting Full timeS-RM Intelligence and Risk Consulting is a global leader in providing intelligence and cyber security services. Our team of experts helps clients solve complex information security challenges.The RoleWe are seeking an experienced Forensic Cyber Security Specialist to join our Incident Response team in Kuala Lumpur. As a key member of our team, you will play...
-
Incident Response Team Lead
1 week ago
Kuala Lumpur, Kuala Lumpur, Malaysia Upscale Sdn Bhd Full timeWe are seeking an experienced Cyber Security Incident Manager to join our team at Upscale Sdn Bhd. This is a unique opportunity to contribute to our Group Information Security (GIS) team, which plays a critical role in protecting our organization's environment from various threats and risks.Key Responsibilities:Leading Incident Response (IR) engagements,...
-
CyberSOC Digital Forensics Specialist
4 days ago
Kuala Lumpur, Kuala Lumpur, Malaysia Nestlé SA Full timeLocation: Kuala Lumpur, MYCompany: Nestrade (Nestle Regional Service Centre)Full-timeBachelor's Degree5+ years of experiencePosition SummaryJoining Nestlé means you are joining the largest Food and Beverage Company in the world. At our very core, we are a human environment – passionate people driven by the purpose of enhancing the quality of life and...
-
Cyber Security Specialist
2 days ago
Kuala Lumpur, Kuala Lumpur, Malaysia Nestlé SA Full timeAt Nestlé SA, we're committed to enhancing the quality of life and contributing to a healthier future. As a leader in the food and beverage industry, we strive for excellence in everything we do.We are currently seeking a highly skilled Digital Forensics Specialist to join our team. This individual will be responsible for conducting forensic investigations...
-
CyberSOC Digital Forensics Specialist
3 weeks ago
Kuala Lumpur, Kuala Lumpur, Malaysia Nestlé SA Full timeLocation: Kuala Lumpur, MYCompany: Nestrade (Nestle Regional Service Centre)Full-timeBachelor's Degree5+ years of experiencePosition SummaryJoining Nestlé means you are joining the largest Food and Beverage Company in the world. At our very core, we are a human environment – passionate people driven by the purpose of enhancing the quality of life and...
-
Digital Forensic Analyst Specialist
3 days ago
Kuala Lumpur, Kuala Lumpur, Malaysia Nestlé SA Full timeAbout NestléNestlé SA is a global leader in the food and beverage industry, committed to enhancing the quality of life and contributing to a healthier future. Our company culture emphasizes human values and collaboration.Job DescriptionWe are currently looking for a Digital Forensic Analyst Specialist who will perform forensic investigations of cyber...
