Website DXC

As part of the SIC Team, you will:
•    Monitor security tooling , conduct triage and analysis of any subsequent alerts, events and/or security incidents identified.
•    Validate, verify and report protective or countermeasure solutions, both technical and administrative
•    Co-ordinate and Investigate Security Incidents through to completion
•    Work with other resolver groups to respond to and investigate security incidents.
•    Monitor and manage functional mailboxes and respond to email enquiries from the account and clients.
•    Monitor and manage security tickets queues.
•    Review and raise security incidents in ticketing systems.
•    Assist in the completion of security reporting to agreed timescales and quality
•    Compile and present reports using Microsoft PowerPoint and Excel.
•    Provision of Critical Incident Response Report and lessons learnt to key stakeholders.
•    Deal with legal and law enforcement-related issues as required
•    Periodically review security incidents to perform trend analysis, before making recommendations to the Security Delivery Lead for potential security improvements or sales opportunities
•    Respond to incidents as per playbooks and Security Incident Management Process.
•    Act as an advisor to the account concerning Critical Security Advisories., responding to DXC Threat Advisories, ModCerts, Carecert and other emergency patching advisories.
•    Develop and maintain a critical vulnerability management system to effectively communicate with DXC clients when a “Zero Day” vulnerability is discovered e.g., SolarWinds
•    Manage security information requests from the customer.
•    Lead on complex and severe incidents when required  and ensure that playbooks are updated or reviewed to ensure that any lessons learnt are documented and repeatable.
•    Take responsibility for SIC Team processes and continually review them to ensure that they are current and up to date.
•    Ensure that all obligations are covered off (for instance monthly reporting) to the agreed timescales and quality.
•    Ensure that the Security Delivery Lead is informed of all relevant Security Incidents and Issues on the account.
•    There will be a requirement that you must provide standby(on-call) cover whilst working on an agreed rota to cover high severity/critical  security incidents
•    There may be requirements to work flexible hours when required e.g.,8am -4pm or 10am to 6pm.
•    Due to the nature of some of our clients a current security clearance is preferable, or willingness to attain security clearance.

To apply for this job please visit careers.dxc.com.