Senior Analyst, Incident Response Emea Prague, Praha

Senior Analyst, Incident Response Emea

**What you will do**
The Johnson Controls’ Global Information Security team is currently undergoing a significant transformation and expansion to enhance our cybersecurity resources and capabilities in response to the constantly evolving threat landscape. As a result, we are seeking a highly skilled Senior Analyst to join our cybersecurity team and take a **leading role in detecting, responding to, and mitigating security incidents**.
In this critical position, you will work closely with multiple departments to ensure the prompt and efficient resolution of security threats, with the goal of minimizing impact and strengthening our overall security posture. Your **expertise and proactive approach will be vital** in identifying vulnerabilities, implementing effective incident response measures, and continuously improving our security protocols.
**How you will do it**
- Conduct thorough incident analysis for escalated **incidents at level 2 or 3**.
- Implement **effective containment measures** based on a thorough assessment of risk and scope, minimizing the potential impact of security incidents.
- Coordinate technical work and **collaborate with other departments** and functions.
- Provide guidance and **support to level 1 SOC analysts**.
- Draft and maintain documentation such as **runbooks, alert logic, policies, and procedures** to ensure consistent and standardized incident response practices.
- Drive **innovation **by developing creative and effective solutions to resolve complex problems and incidents.
**What we look for**
**Required**
- Solid experience working in a global corporate enterprise in the CSIRT or SOC, specifically at level 2 or 3.
- Strong knowledge of common tools, tactics, and procedures utilized by cyber threat actors.
- Experience with both commercial and open-source forensic tools, along with expertise in data acquisition methods and static/dynamic malware analysis.
- Proficiency in working with SIEM, SOAR, EDR, and other security tools.
- Experience with operating systems including Windows, Linux or MacOS.
- Good understanding of networking protocols, technologies, and topologies.
- Proficient in communicating clearly and concisely, including the ability to effectively convey technical information to both technical and non-technical audiences.
- High attention to detail and strong multitasking abilities, enabling the management of multiple priorities and the ability to work effectively under pressure.
**Preferred**
- Bachelors degree in cybersecurity, computer science, information systems, or another technology-related field
- Familiarity with scripting languages (Python, Powershell)
- Relevant GIAC certifications (GCIH, GCFA, GCFE, GCFR etc.)
- Familiarity with cloud computing platforms (i.e., AWS, Azure, or GCP)
**Our culture**
At Johnson Controls you’ll have the opportunity to work on some of the most exciting projects in today’s market. Our hardworking people empower us, and we believe in being part of a team that is open, collaborative, results-oriented, hardworking and above all fun.
We believe that diversity and inclusion matter and make a difference. By embracing the true value of diversity and inclusion, getting comfortable with having crucial conversations, and valuing different perspectives, we will be one of the most desirable places to work.
LI-BB1
LI-Remote

• z domu

Zajímavé nabídky práce v okolí: