CyberSecurity Email Incident Response Advisor – (CSIRT)

Cybersecurity Incident Response Email AdvisorBedford, MA; Round Rock, TX: or RemoteThe Dell Security & Resiliency organization manages the security risk across all aspects of Dell's business. We are currently experiencing incredible growth in order to meet the security needs of the world's largest technology company. With team members located in over 15 countries, you will have an excellent opportunity to influence the security culture at Dell and further develop your career.Dell is a worldwide provider of information technology services and business solutions to a broad range of clients. We seek men and women who share our values, thrive in a team environment, and recognize the importance of accountability; people who strive to exceed expectations to ensure our Clients' success.We are currently seeking a Cybersecurity Incident Response Email Advisor to join our Security & Resiliency team, based in Bedford, MA, Round Rock, TX or Remotely. This role is responsible for investigating and reporting of major security incidents supporting all Dell business units and mergers & acquisitions. This role requires experience in all phases of Cybersecurity Incident Response including preparation, analysis, notification, response, recovery, and post-mortem. The Cybersecurity Intelligence & Response Team (CSIRT) under Security & Resiliency team is responsible for coordinating with IT, Legal, Human Resources, and other appropriate business units to gather incident details, assess impact, and coordinate response.The focus of the role is primarily responding ensuring that the Incident Response team is equipped with the proper tools and data sets to monitor for and respond to email based threats. The role will including maintaining relationships with intelligence and sharing groups who focus on email threats and Business Email Compromise.Key Responsibilities

Demonstrate sufficient English communication skills to clearly and professionally communicate with end-users.

Understanding of the basics of SMTP application protocol.

Possess a clear understanding of and be able to differentiate between the multiple types of unwanted and suspicious types of electronic communication (ex. spam, bulk/marketing mail, credential phishing, business email compromise, malware phishing, spear phishing, targeted attacks, whaling, smishing, vishing)

Analyze email meta data (links, attachments, full headers) for signs of malicious intent.

Ability to use email traffic logging tools to ascertain preexisting communication relationship with senders of messages under analysis.

Ability to use email traffic logging tools to determine spread of suspicious messages under analysis.

Ability to use standard file assessment tools to ascertain potential maliciousness of file attachments

Requirements

7+ years of hands-on experience with a focus in areas such as systems, network, or information security / cybersecurity

3+ years of cybersecurity Incident Response experience

Should possess one or more of the following certifications – CISSP, SANS GCIH, GCIA, GNFA, GREM

Exceptional ability to conduct cybersecurity investigations, analyze and distill relevant findings and determine root cause

Strong knowledge of security technologies such as SIEM, Full packet capture, Firewall/NGFW, IDS/IPS, EDR, DLP, UEBA

Strong knowledge of web technologies, networking protocols, Microsoft Windows and Linux/Unix platforms and tools with related experience in corporate infrastructures

Strong technical experience and familiarity of various types and techniques of cyber-attacks, with the incident response and threat hunting lifecycles.

Knowledge and understanding of public and private cloud environments such as Amazon, Google, Microsoft, etc.

Excellent analytical thinking, time management and coordination skills and excellent command in English (both written and verbal)

Ability to work in a dynamic and multicultural environment, with a positive and professional attitude

Dell is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Dell are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Dell will not tolerate discrimination or harassment based on any of these characteristics. Learn more about Diversity and Inclusion at Dell here."LI Priority"