Cyber Security Incident Responder

Location : Krakow, Poland

Function : HV Cybersecurity

Requisition ID : 1032034

Our Company

We’re Hitachi Vantara, the data foundation trusted by the world’s innovators. Our resilient, high-performance data infrastructure means that customers – from banks to theme parks ­– can focus on achieving the incredible with data.

If you’ve seen the Las Vegas Sphere, you’ve seen just one example of how we empower businesses to automate, optimize, innovate – and wow their customers. Right now, we’re laying the foundation for our next wave of growth. We’re looking for people who love being part of a diverse, global team – and who get excited about making a real-world impact with data.

The team

We are the Cybersecurity Incident Response team, part of Cybersecurity team at Hitachi Vantara, and we are passionate advocates of information security! We are charged with protecting the company’s key information systems and data, and responding to attacks, intrusions, and other security incidents. We are out-of-the-box thinkers, innovators, and team players. We constantly seek new and better ways of doing things. We need highly motivated individuals to join our dynamic team who have positive attitudes and want to be part of something special. We strive for nothing less than the very best cybersecurity incident response program!

The role

The Cybersecurity Incident Responder has the primary responsibility for the company in responding to security incidents, from alerts out of the security toolset. The position also provides guidance and coaching to other members as well as acting as an escalation point for high severity incidents. The position also collaborates with other Incident Response team members in other regions (Americas, Asia and Europe). The position will interact and collaborate with practitioners across IT, including Help Desk, Desktop Operations, System Administration, Networking, and cloud environment administrators. During high priority incidents the Incident Responder will direct the investigation and response activities of other security analysts, IT practitioners, and provide reporting and updates to Director level management. The successful candidate will be able to articulate themselves well, explain difficult concepts in ways that are easy to understand, be a team player, willing to admit when they are wrong or have made a mistake, be ready to always back up their words with data and solid analysis, and always be seeking opportunity to grow.

The work is mostly remote; shifts : 09 : 00 -17 : 00, including weekends (twice a month).

What you’ll bring

• Fluent English.
• 3 years total experience in IT or cyber security is required.
• Strong working knowledge of networking concepts, the OSI model, firewalls, ACLs, load balancers, packet capture utilities such as Wireshark.
• Strong working knowledge and experience responding to host-based threats and risks, including ransomware.
• Strong working knowledge and experience with log analysis using a SIEM including writing and tuning rules for alerts, reading and interpreting logs from various platforms including Linux, Windows, and networking appliances.
• Working knowledge of EDR and Anti-Malware technology and platforms is required.
• Experience with SentinelOne and Microsoft Defender is highly desirable.
• 2 years’ experience working as a SOC analyst or incident response role is desirable.
• Highly desirable for the candidate to have a security certification such as CISSP, CISM, GSEC, CEH, CISA or other.
• Knowledge of AWS and Microsoft Azure environments and concepts is desirable.
• Experience leading small teams is a plus.

About us We’re a global team of innovators. Together, we harness engineering excellence and passion for insight to co-create meaningful solutions to complex challenges. We turn organizations into data-driven leaders that can a make positive impact on their industries and society. If you believe that innovation can inspire the future, this is the place to fulfil your purpose and achieve your potential.

Championing diversity, equity, and inclusion

Diversity, equity, and inclusion (DEI) are integral to our culture and identity. Diverse thinking, a commitment to allyship, and a culture of empowerment help us achieve powerful results. We want you to be you, with all the ideas, lived experience, and fresh perspective that brings. We support your uniqueness and encourage people from all backgrounds to apply and realize their full potential as part of our team.

How we look after you

We help take care of your today and tomorrow with industry-leading benefits, support, and services that look after your holistic health and wellbeing. We’re also champions of life balance and offer flexible arrangements that work for you (role and location dependent). We’re always looking for new ways of working that bring out our best, which leads to unexpected ideas. So here, you’ll experience a sense of belonging, and discover autonomy, freedom, and ownership as you work alongside talented people you enjoy sharing knowledge with.

We’re proud to say we’re an equal opportunity employer and welcome all applicants for employment without attention to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran, age, disability status or any other protected characteristic.  Should you need reasonable accommodations during the recruitment process, please let us know so that we can do our best to set you up for success.