CSIRT Country Team Lead

Orange Cyberdefense is the expert cyber security business unit of the Orange Group, providing security consulting, solutions and services to organisations around the globe. We strive to protect freedom and build a safer digital society. We are looking for a CSIRT Country Team Lead to join our team in the UK.

Working as a CSIRT Country Team Lead 

The CSIRT Country Team Lead (CTL) role is a 50/50 mixture of technical investigation and delivery, with client engagement and incident leader responsibilities. This means it is the CTL role to ensure that all policy and procedure is followed when engaging with a client throughout the life cycle of each client engagement. The role is a managerial role, CTL’s will be required to assist the CSIRT manager in the day-to-day management of the country resources for which they are responsible. Each CTL will be given an appropriately sized team to work with to ensure that client engagements of various sizes can be dealt with in a successful way. For retainer clients the CTL will ensure that the clients are correctly onboarded, working with their team to keep clients informed of the progression of the onboarding. CTLs are also responsible for the quality of all Scopes of Work (SOWs) needed for their team. This can be delegated when appropriate.The role will be heavily client facing, and when dealing with high impact engagements the role will be required to carry out crisis management, this will be delivered with the assistance of a CSIRT Manager.

Key responsibilities: 

• Assist the CSIRT manager with personnel administration for the country resources that they are responsible for including:
  ‒ Leave requests. (1st line approver)
  ‒ Expenses (1st approver)
  ‒ Individual performance reviews
  ‒ personnel development plans
• Assist the CSIRT manager in maintaining contracts for the country that they are
  responsible for within Salesforce and ServiceNow and any future case management
  systems.
• Support and provide consultancy services as directed by the CSIRT manager for the country they are responsible for. 
• Act as point of contact and escalation point for the CSIRT to other local resources. Such as other technical and sales teams within the country they are responsible for.

What we expect of you: 

• Minimum of four years proactive client facing incident response experience
• Proven exposure of intrusion detection and vulnerability analysis
• Exposure with network analysis tools and an ability to conduct packet capture analysis strong understanding of networking principles including TCP/IP, DNS etc. and commonly used Internet protocols such as SMTP, HTTP etc
• Intrusion Detection Systems and methods of security hacking/penetration testing
• Proven experience in client facing major cyber security incident triage, containment,remediation and recovery steps. Ideally not just from working in a SOC environment
• A proficiency in using SIEM and security products to address cyber incidents.
• Security qualification (SANS Cyber Defense, EC-Council Certified Security Analyst or other related certifications preferred. 

By joining one of the world’s leading cyber security companies, you will be offered the following:

• An opportunity to join a forward-thinking company, and a supportive work environment
• Competitive salary
  
• Private medical healthcare
• Health cash plan
• Company pension
• Life insurance
• Income protection insurance
• Company events several times a year
• Employee discount scheme

Please send your CV for immediate consideration.

Orange Cyberdefense are an equal opportunities employer, welcoming applications from all people, regardless of their race, sex, disability, age, religion, or sexual orientation.