Global Information Security Senior Manager – Incident Response - The Boston Consulting Group
Boston, MA
About the Job
Under the general direction of the Information Security Director – Incident Response or delegate and working with other Risk, IT, BST, etc. colleagues across the firm, the roles will perform the following functions:
Participate as an integral part of the Security Team and IT in general
Participate as an integral part of the Security Team and IT in general
- Work closely with CSIRT team people & technology to detect, assess, and communicate cyber threats
- Update the Security Team and other groups on industry trends and recommend initiatives to help lower risk
- Define SIEM use cases to collect, monitor and analyze data to discover and discern trends, threats, and security risks associated with BCG assets and information.
- Recommend and create SIEM rules to protect BCG and BCG client confidential information
- Proactively monitoring and analyze logs via the SIEM for indicators of attack
- Mentoring more junior team members
- With the Information management team, follow-up on incidents, issues, and concerns related to data loss
- Manage incidents related to data loss, producing alerts and escalating issues to appropriate management
- Provide SIEM solutions and support for specific case team and/or project needs and requirements
- Develop and produce operational metrics that demonstrate the effectiveness of controls, quantifies security risks and issues, confirms service levels, tracks incident type and volume
- Apply industry and BCG security knowledge, policy, standards, practices to incident response
- Respond to inquiries related to data loss and inappropriate sharing
- Develop standard materials in support of BCG Information Security
- Respond to, and to the extent possible, accommodate special requests and requirements
- Track and report on security issues
- All other tasks and responsibilities as requested by manager
- Attacker methods and TTPs
- Standards, regulations and legislation.
- Threats and vulnerabilities
- Technologies and solutions
- Industry best practices
- Client requirements and concerns
- Incident response and investigation
- Incident response management for client security incidents
- Work with IT Directors, Managers, Architects and staff to implement, monitor and maintain Confidentiality, Availability and Integrity of BCG information assets.
- Track and manage materials provided to external providers and clients.
- Maintain information security credentials and certifications as required to present a credible presence to internal and external audiences.
Source : The Boston Consulting Group