Line Manager Incident Response Team page is loaded
Line Manager Incident Response Team
Apply locations Newport Paris Area time type Full time posted on Posted 5 Days Ago time left to apply End Date: January 5, 2025 (24 days left to apply) job requisition id JR10302574
Job Description:
We are looking for an experiencedIncidentResponder as Line Manager to Lead our Airbus ProtectIncidentResponseCentre (IRC). Reporting to the HO CSIRT, the IRC Line Manager will have a strong Technical focus, at expert level (Technical Leader) withinIncidentResponsetopics and the ability to manage and lead a small professional transnational team of responders to support the Managed Security Services and interoperability between IRC, our Threat & ServiceManagementteams in addition to the Security Operations Centre.
This position's location is flexible within our different sites in France and UK.
The role …
* Responsible for the day to day leadership andmanagementof the transnational I ncidentResponseCentre (IRC)
* Accountable for the development and maintenance of a proactiveIncidentResponsePlan. The plan is to include but not limited to the communications plan plus the specific procedural or technicalresponsesfollowing a major securityincident.
* Is responsible for the design, planning and execution of IR exercises and Cybersecurity crisismanagementpreparation exercises to test theIncidentResponsePlan.
* Develop and maintain the readiness of the logistics and IRC team members in the associated tooling, procedures and ensure all permits and authorisations are current.
* Act as theincidentmanager, or delegate the authority to a qualified person, to provide expert direction and full accountability for the entire process and duration of ongoingincidents.
* Coordinates the communication plan and provides timely updates to stakeholders.
* Ensure all stakeholders know their role in theIncidentResponsePlan and that stakeholders are actively brought into the loop of ongoingincidents.
* Responsible for ensuring allincidentsare subject to feedback (lessons identified) as to capitalise on and define improvement actions.
* Responsible for maintaining high levels of Customer satisfaction.
* Take an active part in the coordination of testing for and resolving system vulnerabilities in coordination with the ThreatManagementCentre.
* Take an active and collaborative part in the coordination of Threat Hunting activities.
* Take a leading part in the coordination ofIncidentresponseprocesses applicable to IRC, specifically the coordination and interoperability with the Security Operations Centres, ThreatManagementCentre and ServiceManagementteams.
* Supports the attainment and maintenance of relevant Certification (BSI, PRIS, etc)
* Responsible for the provision of cost calculations supporting bid activities or new service designs and supporting the Sales teams in their working knowledge of IRC services.
* Manages the personnel of the IRC in terms of recruitment, retention, training and development, career planning, programming of activities and absences.
* Maintains an expert knowledge of best cyber security practices.
* Provide technical support for R&D or R&T projects
This position requires a security clearance or requires eligibility for clearance by recognised authorities.
Education:
Itwould be an advantage (disirabie) to hold the following, or an equivalent;
* A master's degree in a related field, such as computer science, cyber security or information technology.
* A general security certification, such as CISSP or Certified Information Security Manager (CISM), or an incident response-specific certification.
* A range of certification relating to malware analysis and reverse engineering
Other Skills:
* Experience in leading an Incident Response Team
* Proficiency in using incident response and SIEM, SOAR, EDR, XDR tools, and familiarity with digital forensics techniques and other associated tools.
* Hands-on experience in data analysis, familiarity with cloud infrastructure, web application and servers.
* Strong written and verbal communications skills, and the ability to articulate complex technical issues in a concise and confident manner.
Leadership skills
* The ability to work in a dynamic organisational structure, and to be a decisive, bright, and positive leader.
* Ability to work in a multi Nationalrole, supporting IR Teams in our home countries.
Experience
Five or more years of experience in incident response, cybersecurity, or a related field
What’s in it for you…
* Joining Airbus Protect with :
o A close and caring management,
o A pipeline of innovative projects,
o A community of recognised experts,
o Great career paths and training opportunities,
* Great benefits:
o 25 days holiday
o Hybrid working
o Flexi time
o Option to purchase holidays
o Generous pension scheme
o Eligibility to a Company profit sharing scheme
o Share options
o Access to a benefits platform offering car leasing, family health plans, dental plan, shopping discounts and much more …
You are looking for a position with various activities and real professional opportunities…
Join the AIRBUS PROTECT journey, we are waiting for you!
#BUCyberAP #JobAPFR #JobAPUK #6to10YearsExp #Over10YearsExp
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.
Company:
Airbus Protect Limited
Contract Type:
Permanent
Experience Level:
Professional
Job Family:
Cyber Security
By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.
Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom@airbus.com .
At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.
#J-18808-Ljbffr