Senior Cyber Incident Response Analyst

Title:                                                                            Senior Cyber Incident Response Analyst

Location:                                                                     Sweden

Salary:                                                                         Negotiable / DOE

About Us

Integrity360 is a leading independent cybersecurity and PCI specialist operating across Europe, Africa, the Caribbean, and North America. The company has office locations in Ireland, the UK, Bulgaria, Italy, Sweden, Spain, Lithuania, Ukraine, Africa, the Caribbean, and Canada, supported by six Security Operations Centres (SOCs) located in Dublin, Sofia, Madrid, Stockholm, Rome, and Cape Town.

With over 780 employees, including more than 585 dedicated cybersecurity professionals, Integrity360 delivers a full suite of professional, support, and managed security services. These span the complete cyber risk lifecycle, from identification and prevention to detection, response, and recovery. Integrity360 supports over 3000 mid-market and enterprise organisations across sectors including financial services, insurance, government, healthcare, retail, telecommunications, and utilities.

At Integrity360, people come first. We invest heavily in learning, development and progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we’d love to hear from you.

Job Role / Responsibilities

The Senior Cyber Incident Response Analyst will work within established methodologies to perform a variety of Incident Response related activities for new and existing customers, to include responding to cyber incidents, proactively hunting for adversaries in customer networks, conducting detailed Intrusion analysis – host and network, malware reverse engineering, Digital forensics and Cyber Threat Intelligence services.

Proactive client services, such as compromise assessments and evaluating and recommending tools and technology for incident response are also in scope. Demonstration of a strong comprehension of malware, emerging threats and adversary TTPs will be critical to success.

Desired Skills

• Customer focus - have the ability to work directly with customers and demonstrate services delivered to customers in a face to face setting when required. 
• You will have the capacity to multitask on several technical and operational issues simultaneously. Have a very good understanding of customer issues and you are able to empathize with customers as to their current situation. 
• Ability to think through difficult issues and provide advice or when necessary 
• A clear understanding of the ITIL processes 
• Ability to work on assignments requiring sound judgement in resolving issues or in making recommendations; 
• Initiative to drive all incidents to resolution, ensuring timely participation by all stakeholders; 
• Without hesitation when required, escalate issues to upper management, to include C-Level managers, in accordance with prescribed procedures.
• Incident Management and Incident communication experience 
• Experienced in meeting deadlines while following processes and procedures 
• Capable of working with other teams that challenge your processes and procedures 
• Understanding of ITIL, SANS, PCI DSS, ISO 27001 and ISO20000 
• Logical thought mindset and experience developing reusable processes / data architectures.
• Professional/native Swedish and professional English 

Technical Knowledge Requirements

• Host Intrusion Analysis
  • Windows (Endpoint and Server)
  • Unix
• Network Intrusion Analysis
• Familiarity with categories of Malware and Malware Reverse Engineering techniques
• Experience working with security tools for the purposes of detection, diagnosis, containment and remediation
• Extensive knowledge of Windows server systems.
• Experienced in creating and maintaining a security incident response plan (IRP).

Certifications/Qualifications

• SANS: Qualifications in Security Essentials (GSEC), Hacker Techniques & Incident Handling (GCIH), Host (GCFE/GCFA) & Network (GNFA) Forensics, Malware Analysis (GREM) and any Digital Forensics specializations.
• CREST certifications: Certified Incident Manager, Certified Host Intrusion Analyst, Certified Network Intrusion Analyst, Certified Malware Reverse Engineer, Practitioner Intrusion Analyst, Registered Intrusion Analyst
• Certified Ethical Hacker
• A strong team player with a flexible approach 
• Can demonstrate consistency in work attitude

 #LI-VP1