PbRole : /bSenior Cyber Security Incident Response Lead /ppbSkills : I /bncident Response Lead (Insider Threatb) ( /bComputer Emergency Responseb) /b /ppbLocation /b : Madrid Spain (Remote) /ppbType : /b Permanent /ppbLanguage Requirement /b : Spanish C1/C2 and English C1/C2) /ppbSalary : /b as per market /ppbr/ppWe are at Coforge hiring for Senior Cyber Security Incident Response Lead with b I /bncident Response Lead (Insider Threatb) ( /bComputer Emergency Responseb) /b /ppbr/ppbJob Responsibilities /b /pulliMonitors the performance and efficiency of computer forensics practices. /liliOperates intrusion detection and prevention technologies, systems and tools to monitor, analyse and respond to networks and systems. /liliMonitors forensics procedures and adjusts digital forensics tools accordingly. /liliEnsures optimisation to increase the response speed and outcome reliability. /liliAssists in developing internal control reports provided to external auditors. /liliApplication of information security laws in computer crime investigation. /liliAnalyses unexpected network or system events, assessing their impact, and devising and implementing actions to stop them. /liliManages the sharing of important information quickly and accurately. /liliSupports the monitoring/review of policies, processes/procedures and prioritise operations. /liliLeads and manages incident response activities. /liliCommunicates to senior leads awareness of significant incidents. /liliSupport the development of enhance strategies and incident response playbooks. /liliManage stakeholder relationships and streamline processes. /liliShape and implement products and processes to protect the bank from Insider threat. /liliDevelops appropriate metrics to display the effectiveness of Insider threat. /liliMonitor/review processes/systems and product performance to ensure continuous improvements are made to prevent and eliminate insider threats. /li /ulpbr/ppbMandatory Skills /b /pulliExperience with incident management in cloud-based environments /liliKnowledge of the tools and processes for maintaining application security. /liliSkills/knowledge of designing and implementing security programs /liliExperience of application testing to detect bugs, flaws, and insecure configurations. /liliExperience of responding to application threats following established security policy. /liliKnowledge of concepts, tools, and practices of dealing with computer crime. /liliExperience of detecting and preventing crimes that involve computers/networks as instruments. /liliSound knowledge of information security /liliKnowledge of techniques, approaches, and processes of digital threats. /liliExperience of detecting, monitoring, analysing, and preventing digital threats. /liliKnowledge of concept, issues, and techniques of endpoint security. /liliExperience of ensuring security compliance of endpoint devices in various circumstances /liliDemonstrable experience in fields such as information security, incident response, or related domains. /liliDemonstrate experience in incident response, security monitoring, digital forensics, and advanced malware analysis. /liliExperience of identifying, managing, and producing incident updates, reports, and recommendations to SLT to facilitate decision-making and risk management. /liliKnowledge of identity and access management (IAM) security principles and insider threat detection tooling /liliFamiliarity with container and Kubernetes security monitoring /liliExperience with reverse engineering or sandbox analysis of malware samples /liliUnderstanding of regulatory and compliance frameworks relevant to financial services (e.g., PCI-DSS, GDPR, DORA, NIST CSF) /liliExperience with SIEM platforms /li /ul