Level 3 Security Incident Response Senior SpecialistAt ABB, we are dedicated to addressing global challenges. Our core values: care, courage, curiosity, and collaboration - combined with a focus on diversity, inclusion, and equal opportunities - are key drivers in our aim to empower everyone to create sustainable solutions.Write the next chapter of your ABB story.
This position reports to

IS Manager

Your role and responsibilities

This role will support the follow-the-sun principle of incident handling within ABB. The IS Level 3 Incident Response Senior Specialist will support the Security Incident Response Service Manager in the delivery of the Security Incident Service to the business stakeholders.The work model for the role is hybrid. #LI-HybridThis role is contributing to the Core IS Services.You will be mainly accountable for:• Handling Security Incidents assigned by the Security Incident Service Manager• Ensuring that incidents are handled according to agreed procedures. Investigates escalated incidents and seeks resolution. Facilitates recovery, following resolution of incidents. • • • Ensuring that resolved incidents are properly documented and closed• Analysing causes of incidents, and informs service owners in order to minimise probability of recurrence, and contributes to service improvement. Analyses metrics and reports on performance of incident management process• Work with our service providers to ensure the proper implementation of the Security Incident Process and Policies • Work closely with Security Incident Service Manager to identify areas of improvement for the Security Incident Process and Policies • Work with countries, businesses and regions to identify key resources that can assist in the Security Incident process and incident handling• Defining standard methods and processes for incident resolution, delegates them to the back-office, and oversees the work of the back-office.• On assignment is involved in the installation, management, maintenance, and optimization of IS security solutions/services.

Qualifications for the role

10 years in IT, 5 in Security incident response. Graduate level with IT focus or equivalent practical experience Security Certification (CISSP, CISM, GSEC or others). Experience in AntiVirus Technology and AV Tools Experience in EDR Technology and EDR Tools Experience in log analysis of Firewalls, Proxy servers, Operation Systems, Databases, preferably via a SIEM Servers / clients / mobile devices / appliances / OSs / common applications, databases / middleware in-depth knowledge

More about us

We Our mission in ABB IS (Information Systems) is to harness the power of information technology to deliver valuable, reliable, and competitive IS services for ABB. If you have a strong technical skills, analytical mind, and the drive to help us stay ahead of the competition, you are the one we are looking for.We value people from different backgrounds. Apply today for your next career step within ABB and visit www.abb.com to learn about the impact of our solutions across the globe. #MyABBStoryIt has come to our attention that the name of ABB is being used for asking candidates to make payments for job opportunities (interviews, offers). Please be advised that ABB makes no such requests. All our open positions are made available on our career portal for all fitting the criteria to apply.ABB does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection to recruitment with ABB, even if is claimed that the money is refundable. ABB is not liable for such transactions. For current open positions you can visit our career website https://global.abb/group/en/careers and apply. Please refer to detailed recruitment fraud caution notice using the link https://global.abb/group/en/careers/how-to-apply/fraud-warning