Cyber Incident Handler

Atos Atlanta , GA 30301

Posted 11 months ago

Atos SE (Societas Europaea) is a leader in digital services with pro forma annual revenue of circa $13.6 billion and circa 100,000 employees in 72 countries. Serving a global client base, the Group provides Consulting & Systems Integration services, Managed Services & BPO, Cloud operations, Big Data & Cyber-security solutions, as well as transactional services through Worldline, the European leader in the payments and transactional services industry. With its deep technology expertise and industry knowledge, the Group works with clients across different business sectors: Defense, Financial Services, Health, Manufacturing, Media, Utilities, Public sector, Retail, Telecommunications, and Transportation.

Atos is focused on business technology that powers progress and helps organizations to create their firm of the future. The Group is the Worldwide Information Technology Partner for the Olympic & Paralympic Games and is listed on the Euronext Paris market. Atos operates under the brands Atos, Atos Consulting, Atos Worldgrid, Bull, Canopy, Unify and Worldline.



Job Description:

The Security Incident Analyst serves as a subject matter expert in the areas of vulnerability assessments, computer forensics, and incident handling. The Security Incident Analyst participates in monitoring and supports a computer incident response team (CIRT) protecting the network security of thousands of users.


  • Support daily monitoring, threat assessment, mitigation, and reporting activities to safeguard agency information assets

  • Lead incident response functions and reporting of findings back to customer and affected stakeholders

  • Creation and maintenance of forensic and incident management policies that govern the handling of incidents

  • Facilitate table top exercises as required with the CIRT and customers

  • Conduct research on the latest threats and the latest technological advancements in combating unauthorized access to information

  • Support the team in publishing incidents, alerts, advisories, and bulletins as needed

  • Cover shifts for 1st level analysts if required

  • Participate in 24x7 on call rotation


  • Possesses an understanding of cyber-attack techniques, vulnerabilities, and countermeasures

  • Can articulate security issues, analysis, and remediation techniques to internal and external customers

  • Must have a desire to continuously grow and improve information security skills

  • Respond to technical security questions and concerns from clients

  • Minimum 8 years of IT experience with 3 years related to cyber incident response

  • GIAC Certified Incident Handler (GCIH), Certified Expert Incident Handler (CEIH) or equivalent

Preferred Qualifications:

  • Operational experience with security infrastructure products such as McAfee ePolicy Orchestrator, Tenable Security Center, or ESM

  • Experience working for a Managed Security Services (MSS) provider in a Security Operations Center, Computer emergency incident response team or computer security incident response center

  • Experience conducting analysis at the packet level

  • Bachelor's degree in Computer Science, Computer Engineering, Information Technology Cyber Security

  • Change oriented actively generates process improvements; supports and drives changes, and confronts difficult circumstances in creative ways

  • Customer focus evaluates decisions through the eyes of the customer; builds strong customer relationships and creates processes with the customer viewpoint

  • Encase certified examiner or GIAC certified Forensic Examiner certification

Your Application

If you wish to apply for this position, please click below to complete our online application form and attach your CV in either Word, rtf or text format.

Atos does not discriminate on the basis of race, religion, colour, sex, age, disability, veteran status or sexual orientation. All recruitment decisions are based solely on qualifications, skills, knowledge and experience and relevant business requirements. We are committed to making reasonable adjustments to the applications process for people with disabilities.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Leader Product Security Incident Response Team (Psirt)

Xylem Inc.

Posted 2 days ago

VIEW JOBS 2/21/2020 12:00:00 AM 2020-05-21T00:00 Xylem |ˈzīləm| 1) The tissue in plants that brings water upward from the roots; 2) a leading global water technology company. We're a global team unified in a common purpose: creating advanced technology solutions to the world's water challenges. Developing new technologies that will improve the way water is used, conserved, and re-used in the future is central to our work. Our products and services move, treat, analyze, monitor and return water to the environment, in public utility, industrial, residential and commercial building services settings. Xylem also provides a leading portfolio of smart metering, network technologies and advanced analytics solutions for water, electric and gas utilities. In more than 150 countries, we have strong, long-standing relationships with customers who know us for our powerful combination of leading product brands and applications expertise with a strong focus on developing comprehensive, sustainable solutions. For more information, please visit us at If you are excited and passionate about helping us solve water, we want to hear from you! The Role: As member of Xylem's Product Security team, the Leader of the Product Security Incident Response Team is responsible for the implementation and execution of security programs and practices to support a growing, global water technology company. This position will work across software and firmware development teams to lead response activities to vulnerabilities and incidents involving Xylem products. This position will liaise with appropriate external stakeholders including government agencies, suppliers, and customers to coordinate response efforts. You will build and lead the Product Security Incident Response Team (PSIRT) programs for our entire product portfolio. Your passion for security and in-depth knowledge of Product Security will ensure that you deliver high impact results. Essential Duties/Principal Responsibilities: * Work with the business, engineering, and product management teams to build and maintain detailed product inventory and install base data. Develop, implement and maintain this data for the entire product portfolio covering software, IIoT, and, Smart-device suites * Conduct complete technical vulnerability assessments for a wide range of products, including embedded devices, enterprise software solutions, and mobile apps * Build, maintain, and measure response plans for vulnerabilities and customer incidents involving Xylem products * Establish external relationships to assist in responding to product events with government entities, industry groups, suppliers, and customer security teams * Provide guidance and leadership on best practices regarding vulnerability and incident response * Design tabletop exercises around product vulnerabilities and incidents to train engineering, product management, and executive leadership on responding to product related events * Lead product related activities during tabletop exercises, vulnerability assessment, and customer incidents * Expert level operational support for security escalations from customers * Support other Xylem product security shared service delivery as needed Minimum Qualifications: Education, Experience, Skills, Abilities, License/Certification: * BS in a technical discipline with 5-years of experience or 10-years of experience * Demonstrated expertise in product/application security architecture, Network security, application security, incident response methodologies * Demonstrated expertise assessing vulnerabilities in industrial products and coordinating vulnerability disclosures * Hands-on experience with security testing tools * In-depth experience assessing security vulnerabilities including those found in the OWASP Top 10, IoT Top 10, and CWE Top 25 * Knowledge of secure infrastructure architectures, application architectures, encryption, Cloud Security and broader security technologies. Preferred Qualifications: * Relevant cyber security certifications * Scripting skills (i.e.: Ruby, Python, Perl, shell scripts) * Experience in software development * Experience with cloud IaaS security operations * IoT network technologies (such as Bluetooth/BLE, WLAN, Z-Wave, Zigbee, identity/auth security) * Experience with wireless technologies such as CDMA, E-HRPD, GSM, UMTS, TDS-CDMA, LTE-FDD / LTE-TDD, and 5Gexperience with Android RIL, Telephony, C and Embedded RTOS * Valuable: Preferred: forensic analysis skills Physical Demands: (The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.) * Regularly required to sit or stand, reach, bend and move about the facility Work Environment: (The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.) * Office: Standard office equipment; work usually performed in an office setting free from any disagreeable elements. * Standard weekly job hours: 40 hours Xylem is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. Xylem Inc. Atlanta GA

Cyber Incident Handler