At ABB, we help industries outrun - leaner and cleaner. Here, progress is an expectation - for you, your team, and the world. As a global market leader, we'll give you what you need to make it happen. It won't always be easy, growing takes grit. But at ABB, you'll never run alone. Run what runs the world.
This Position reports to:
Cyber Fusion Center Manager
Your role and responsibilities
This role will support the follow-the-sun principle of incident handling within ABB. The IS Level 3 Incident Response Senior Specialist will support the Security Incident Response Service Manager in delivering the Security Incident Service to business stakeholders.
The work model for this role is hybrid. #LI-Hybrid
This role contributes to the Core IS Services.
You will be mainly accountable for:
* Handling Security Incidents assigned by the Security Incident Service Manager
* Ensuring incidents are handled according to procedures, investigating escalated incidents, facilitating recovery, and ensuring proper documentation and closure
* Analyzing causes of incidents, informing service owners to minimize recurrence, and contributing to service improvement. Analyzing metrics and reporting on incident management performance
* Collaborating with service providers to ensure proper implementation of Security Incident Processes and Policies
* Working closely with the Security Incident Service Manager to identify areas for process and policy improvement
* Engaging with countries, businesses, and regions to identify key resources for incident handling
* Defining standard methods and processes for incident resolution, delegating tasks to back-office, and overseeing their work
* Participating in the installation, management, maintenance, and optimization of IS security solutions/services as assigned
Qualifications for the role
* Minimum 10 years in IT, with at least 5 years in Security incident response
* Graduate level education with an IT focus or equivalent practical experience
* Security Certifications such as CISSP, CISM, GSEC, or others
* Experience with AntiVirus Technologies and Tools
* Experience with EDR Technologies and Tools
* Experience in log analysis of Firewalls, Proxy servers, Operating Systems, Databases, preferably via SIEM tools, including analysis of logs from mobile devices, appliances, OSs, common applications, and middleware
More about us
Our mission in ABB IS (Information Systems) is to harness the power of information technology to deliver valuable, reliable, and competitive IS services for ABB. If you have strong technical skills, an analytical mind, and the drive to help us stay ahead of the competition, you are the one we are looking for.
We value people from different backgrounds. Could this be your story? Apply today or visit www.abb.com to learn more about us and the impact of our solutions worldwide.
#J-18808-Ljbffr