Cybersecurity Incident Responder

Hitachi - Broomfield, CO

posted 3 months ago

Full-time - Mid Level
Broomfield, CO
Furniture, Home Furnishings, Electronics, and Appliance Retailers

About the position

At Hitachi Energy, we are at the forefront of the transition towards more efficient power distribution, supporting renewable and greener technologies. As a Cybersecurity Incident Responder within our Cyber Defense Center (CDC) team, you will play a crucial role in safeguarding our mission against the increasingly complex and disruptive cybersecurity landscape. Your work will ensure that our innovative efforts in renewable energy remain uninterrupted, allowing us to deliver cutting-edge solutions to customers and countries worldwide. In this position, you will oversee Security Monitoring services in collaboration with our Managed Security Service Provider (MSSP) and perform Incident Response on escalated incidents. You will support expert Incident Managers during high-priority and major incidents, working alongside a diverse, multicultural team that provides 24/7 response capabilities throughout the year. The role involves handling a wide variety of cybersecurity incidents, including those related to legacy IT, Cloud, Operational Technology/Industrial Control Systems (OT/ICS), supply chain, and product security. You will have access to the latest security tools, including next-generation AI-enabled platforms, to effectively manage these challenges. Your responsibilities will include monitoring security systems to detect potential incidents, leading incident investigations, and developing incident response plans that align with our cybersecurity goals. You will communicate with stakeholders about incidents and their impacts, conduct post-incident reviews, and ensure compliance with relevant laws and regulations. This role requires a commitment to living Hitachi Energy's core values of safety and integrity, taking responsibility for your actions while caring for your colleagues and the business.

Responsibilities

  • Monitor security systems to detect potential incidents.
  • Take escalations from the 24/7 Security Monitoring team as necessary.
  • Provide recommendations for improving the security posture of systems and networks.
  • Lead incident investigations, including root cause analysis.
  • Identify areas for improvement in incident response processes.
  • Develop incident response plans that align with cybersecurity organizational goals and objectives.
  • Regularly review and update incident response plans, playbooks, and SOPs as necessary.
  • Communicate appropriately with stakeholders about incidents and their impact at all levels.
  • Provide regular updates on incident response activities.
  • Conduct post-incident reviews and lessons learned.
  • Write professional after action reports on incidents you have responded to.
  • Respond to stakeholder inquiries and concerns in a timely and professional manner.
  • Ensure stakeholders are aware of relevant laws and regulations, such as data privacy laws and incident reporting requirements.

Requirements

  • Bachelor's Degree in Cyber Security, Computer Science, or a related field; OR equivalent experience with a High School Diploma/GED and a minimum of four (4) years of relevant work experience.
  • At least three (3) years of hands-on experience in blue team roles such as Security Operations, Incident Response, Threat Detection and Analysis, and/or Threat Intelligence, preferably within a large enterprise or a security service provider.
  • Demonstrated success in managing complex security incidents from detection through resolution.
  • Good understanding of advanced threat actor tactics, techniques, and procedures (TTPs), familiarity with MITRE ATT&CK.
  • Exceptional communication and collaboration skills, with the ability to effectively engage with both technical and executive stakeholders during incidents and retrospectives.
  • Excellent writing skills, with the ability to consolidate all relevant information into reports.
  • Proven ability to manage multiple investigations or cases concurrently.
  • Flexibility to be on-call for duties and respond to incidents outside regular working hours as required.
  • Willingness to travel occasionally as needed for meetings and/or physical presence for incident response.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service