Cyber Incident Response Lead

At Owens & Minor, we are a critical part of the healthcare process. As a Fortune 500 company with 350+ facilities across the US and 22,000 teammates in over 90 countries, we provide integrated technologies, products and services across the full continuum of care. Customers—and their patients—are at the heart of what we do.

Our mission is to empower our customers to advance healthcare, and our success starts with our teammates. 

Owens & Minor is looking for a Cyber Incident Response Lead to investigate and respond to cyber threats. This position is responsible for the investigation, remediation, and communication of cybersecurity incidents. This position is based in India and will work night shift (10:30pm-7:30am IST).
 

ESSENTIAL JOB FUNCTIONS: 

• Review security alerts that are escalated by SOC analysts to determine if they constitute an incident
• Investigate incidents to determine scope and impact
• Take steps to contain and remediate the incident
• Record incident details, artifacts, and evidence in incident tracking system
• Execute response protocols and playbooks to respond to incidents
• Escalate incident response protocols to senior staff when necessary
• Communicate with end users to collect information and resolve issues
• Collaborate with IT, Legal, and HR teams during incident response process

SUPPLEMENTAL JOB FUNCTIONS:  

• Performs additional duties as directed.
• Effectively accomplishes set goals while primarily working in a remote capacity.
• Will need to be available on an on-call basis for off-hours critical incident response

EDUCATION & EXPERIENCE:  

• 5 years of experience in cyber incident response and investigations.
• 5 years of experience in analyzing email headers and contents
• 3 years of experience in malware investigation and offline malware analysis techniques
• 2 years of experience in leading cybersecurity incident investigation and response

KNOWLEDGE SKILLS & ABILITIES:

• Strong understanding of SIEM log analysis and queries
• Strong understanding of Endpoint Detection and Response (EDR) capabilities and behavior.
• Strong understanding of network protocols such as TCP/IP, DNS, HTTP, TLS, SMB, CIFS, SMTP, and network traffic analysis
• Strong understanding of techniques to investigate phishing, credential theft, ransomware, botnets, and denial of service attacks
• Strong analytical and critical observation skills.
• Understanding of the MITRE ATT@CK framework
• Understanding of cyber incident recovery methodology
• Ability to work in a fast-paced environment with minimal supervision.
• Ability to create documentation and presentations for peers and management.

ADDITIONAL REQUIREMENTS:  

• Desired certifications: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Network Forensic Analyst (GNFA), GIAC Cloud Forensics Responder (GCFR), GIAC Enterprise Incident Response (GEIR)

If you feel this opportunity could be the next step in your career, we encourage you to apply. This position will accept applications on an ongoing basis.

Owens & Minor is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, sex, sexual orientation, genetic information, religion, disability, age, status as a veteran, or any other status prohibited by applicable national, federal, state or local law.