Practice Leader Cyber Incident Response
Ville : Montreal, Quebec
Catégorie : Permanent Full-Time
Industrie : Information technology
Employeur : National Bank
A career as a Practice Leader, Cyber Incident Response in the Cyber Security Incident Management team means playing a key role in overseeing response activities within the Bank. It also means developing and implementing cyber incident response strategies, integrating automation solutions to improve efficiency. It is through your vision, your creativity and your ability to redefine the ways of doing things that you will be a positive actor within the team by promoting learning through playful methods.
Your job:
- Supervise and technically guide the Cyber Incident Response team, ensuring effective coordination and smooth communication with other areas of the Bank.
- Conduct complex digital investigations and provide detailed analytics.
- Collaborate in the implementation of incident simulations (Table Top) based on lessons learned and industry best practices.
- Ensure the implementation of continuous improvements to processes and procedures following audits and incidents.
- Maintain a technology watch and propose improvements based on market trends in security incident response.
- Contribute to the development and improvement of the team's performance metrics and indicators.
- Influence and support the achievement of the team's strategic objectives.
Your team
The IT and Operations sector is made up of more than 5500 experts who work in an agile, proactive and collaborative manner to seize opportunities, stay on the cutting edge of technology and continuously improve processes.
Our team's mission is to protect the organization from cyber threats and to propose solutions and improvements to improve its ability to defend against them. You will report to the Senior Director, Cybersecurity Incident Management.
The Bank values continuous development and internal mobility. Our personalized training programs, based on learning in action, allow you to master your craft and develop new areas of expertise. Tools such as Udemy, the Data Academy, language training, the Harvard Learning Center, and coaching and mentoring support are available to you at all times.
Prerequisite:
- Relevant education and seven to ten years of experience.
- Mastery of digital investigation concepts and the main principles of the Security Operation Center (SOC) in a corporate environment.
- Experience as a system administrator, network administrator, developer, complex project implementation.
- Knowledge or experience in operational cybersecurity
- Functional competence in the use of the main tools of a Security Operations Center (SOC) (e.g. SIEM, EDR, NDR, ticketing systems, etc.)