salesforce.com posted a job you might be interested in

salesforce.com



Senior Security Incident Handler

Sydney, Australia, AU - Computer Software, Information Technology and Services, Internet

Responsibilities:

• Salesforce - the leader in enterprise cloud computing and one of the top 10 places to work according to Fortune magazine - is seeking a senior senior security incident handler for our Computer Security Incident Response team (CSIRT).


• The CSIRT is responsible for 24x7x365 security monitoring and rapid incident response across all salesforce environments. We are the ‘tip of the spear’ and the last line of defense protecting company and customer data from our adversaries.


• The Senior Security Incident Handler will lead the response to high severity incidents, act as a technical escalation point for the team, and perform other security monitoring/incident response functions as needed.


• This individual will also lead significant strategic projects, focused on enhancements to detection and incident response capabilities.

Required Skills:

• 5+ years experience in the Information Security field, including operational security monitoring or incident response experience.
  
  
  
  • Monitoring devices such as network and host-based intrusion detection systems, web application firewalls, database security monitoring systems, firewalls/routers/switches, proxy servers, antivirus systems, file integrity monitoring tools, and operating system logs.
  
  
  • Responding to security incidents in a production environment, such as investigating and remediating possible endpoint malware infections and mitigating e-mail borne threats such as spam and phishing.
  
  
  
  


• The ability to cross-functionally lead and manage the response to high priority, high visibility operational security issues.


• The ability to build strong relationships with peers both internal and external to your functional group, and with peers/professional organizations outside your company.


• Strong technical understanding of network fundamentals and common Internet protocols.


• System forensics/investigation skills, including analyzing system artifacts (file system, memory, running processes, network connections) for indicators of infection/compromise.


• Strong technical understanding of the information security threat landscape (attack vectors and tools, best practices for securing systems and networks, etc.).

Desired Skills:

• Experience configuring security incident and event management tools (such as ARCSight, Symantec SIM, LogLogic), including creating event filtering and correlation rules and reports.


• Ability to develop custom threat detection rules (i.e. YARA/IDS signatures).


• Prior experience in a 24x7x365 operations environment.


• Relevant information security certifications, such as CISSP, SANS GCIA, SANS GCIH, SANS GPEN, SANS GFCA, Offensive Security OSCP.

Salesforce.com is an Equal Employment Opportunity and Affirmative Action Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Headhunters and recruitment agencies may not submit resumes/CVs through this Web site or directly to managers. Salesforce.com does not accept unsolicited headhunter and agency resumes. Salesforce.com will not pay fees to any third-party agency or company that does not have a signed agreement with Salesforce.com.



Accessibility – If you require accessibility assistance applying for open positions please contact applicant_access@salesforce.com .



No salary provided



Posted October 30, 2014 at 05:26AM from LinkedIn http://ift.tt/1q2e1I9

via IFTTT