Your Role As part of the Cyber Threat Intelligence and Incident Response (CTIIR) team you will develop and provide digital forensics and incident response expertise with the support of the Associate Director of Forensics & e-Discovery located in King of Prussia, USA. This role is an excellent opportunity to join our growing team and to help us build and refine our capabilities. This role provides ample room for skills development, career growth, and mentorship from cybersecurity professionals with decades of experience in the field. As a member of the CTIIR team you will provide global support for incident response and digital forensics. You will use industry leading tools and technologies to help detect, respond to, contain, and recover from complex cybersecurity events stemming from both external and insider threats. You will perform complex investigations to support legal and HR investigations as well as to thwart advanced persistent threats to CSL. This position is part of a global team based out of the United States, Switzerland, and Australia. Your Responsibilities Reporting to the Associate Director, Digital Forensics and eDiscovery the Manager, Incident Response & Forensics u will: Lead and conduct Security Incident and Event Management (SIEM) operations for complex, global, incidents across geographies, business units, and infrastructures Oversee incident response activities, including the identification, containment, eradication, and recovery from security incidents and breaches Conduct digital forensic investigations to determine the root cause of security incidents, gather evidence, and provide recommendations for remediation and prevention Perform modern digital forensics using EDR and SIEM platforms Perform traditional digital forensics for endpoints (hard disk and memory), mobile, network, virtual devices, and cloud instances Collect samples and perform static and dynamic malware analysis to determine impact and capability Document processes and procedures related to digital forensics and incident response. Provide training on best practices, and review outputs for quality and conformity to documented process Collaborate with internal teams, external partners, and law enforcement agencies as necessary during incident response and digital forensic investigations Develop and implement metrics and reporting mechanisms to track the effectiveness of threat intelligence, incident response, and digital forensic activities Communicate security risks, standards, and solutions to business partners and IT staff as needed Your Experience Bachelor's or Master's degree in Computer Science, Information Security, or a related field, or equivalent professional experience Relevant professional certifications At least 5 years of experience in cybersecurity, malware analysis, incident response, or digital forensics roles Experience with modern SIEM solutions such as Devo is desirable Experience with advanced EDR platforms such as Crowdstrike is desirable To apply submit your CV no later than Monday 6th May 2024. Our Benefits We encourage you to make your well-being a priority. It's important and so are you. Learn more about how we care at CSL. About CSL CSL is a leading global biotechnology company with a dynamic portfolio of life-saving medicines, including those that treat haemophilia and immune deficiencies, as well as vaccines to prevent influenza. Since our start in 1916, we have been driven by our promise to save lives through innovation. Learn more about CSL . We want CSL to reflect the world around us As a global organisation with employees in 35+ countries, CSL embraces diversity and inclusion. Learn more about Diversity & Inclusion at CSL. Do work that matters at CSL!
