Vice President, Computer Security Incident Response – APAC recruitment
Vice President, Computer Security Incident Response - Asia Pacific
The Information Technology Risk Security Management Team's mission is to ensure the security and resiliency of the Firm's computing environment, protect customer and employee confidential information, and comply with regulatory requirements globally. Within this team, is the Computer Security Incident Response Team (CSIRT).
CSIRT is a global team that manages all computer security related incidents across the firm. CSIRT's mission is to provide immediate and efficient response to computer security incidents ranging from intrusions, malware, DDoS, unauthorized access, insider attacks and loss of proprietary information. The CSIRT Team reports into the Risk Security Management Team under the Chief Information Security Officer and maintains strong relations with all Line of Business technology groups. CSIRT works closely with the Threat Intelligence Team, Investigations Forensics Team, Security Operations Center, and the Vulnerability Management Team in order to quickly identify, alert, respond and mitigate computer security incidents.
We have an exciting, newly created regional role (based in Sydney), Vice President, CSIRT Responder for Asia Pacific, which will be responsible for managing critical security related incidents for the region. Responsibilities will include:
- Provide follow-the-sun coverage in conjunction with other members of the CSIRT Team to respond to computer security incidents that meet the requirements of JPMorgan Chase Co. global businesses
- Respond to critical computer security incidents by collecting, analyzing and preserving digital evidence
- Assemble and coordinate with technical teams and third-party vendors to resolve incidents as quickly and efficiently as possible
- Communicate status of response, resolution and final root cause analysis to the appropriate stakeholders
- Ensure that all incidents are recorded and tracked to meet audit and legal requirements
- Conduct root cause analysis to identify gaps and recommendations ultimately remediating risks to the firm
- Communicate effectively with representatives of the Lines of Business, technology specialists, and vendors
- Gather forensic evidence for disciplinary action or criminal investigation
- Partner will all JPMC business lines to investigate internal code of conduct, fraud and other investigations as instructed by the Cyber Security Managing Director
- Advise business partners on issues of suspected fraud and provide counsel on product, technology and business issues that have fraud implications
- Conduct advanced computer and network forensic investigative functions relating to various forms of malware analysis, computer intrusion, theft of information, denial of service and multi-national organized criminal groups
Skills
QUALIFICATIONS
The ideal candidate will have the following qualifications and experience:
- 7+ years' industry experience in a large, mission-critical environment
- 3+ years incident response experience
- Network intrusion methods, network containment, and segregation techniques and technologies experience
- Firewall configuration and features experience
- Network and platform based security techniques experience
- Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS), both host and network based systems experience
- IP Protocol Suite; knowledge of IP Routing protocols
- High proficiency with Windows UNIX,
- Coding (scripting) experience e.g. Perl, VB Script, Python etc
- Penetration testing experience
- Strong written and verbal communication skills; ability to understand complex problems while formally presenting them simplistically
- Strong knowledge of incident response and crisis management
- Ability to identify both tactical and strategic solutions
- Ability to assess security incidents quickly and effectively and communicate a course of action to respond to the security incident while mitigating risk and limiting the operational and reputational impact to JPMorgan Chase Co.
- Knowledge of computer forensics both host and network based
- Experience working with Encase, FTK and open source forensic tools
- Bachelor's Degree in Computer Science or related field
HIGHLY DESIRED
- Malware analysis, virus exploitation and mitigation techniques experience
- Knowledge of Novell, Mac OSX operating systems
- Ability to coordinate, work with and gain the trust of business stakeholders, technical resources, and third-party vendors
- Ability to lead meetings, divide responsibilities, and influence people to take action to assist in the resolution of security incidents