Cybersecurity Incident Reporter
Sandvik AB / Datajobb / Stockholm
Observera att sista ansökningsdag har passerat.
Visa alla datajobb i Stockholm,
Solna,
Lidingö,
Sundbyberg,
Danderyd eller i
hela Sverige Visa alla jobb hos Sandvik AB i Stockholm,
Järfälla,
Hedemora,
Sandviken,
Göteborg eller i
hela Sverige Sandvik's Cybersecurity Incident Response Team (SAND-CSIRT) is seeking an Incident Responder to join our team of defenders, helping us develop and handle complex cybersecurity incidents globally across the company. And when we say globally, we mean every corner of the world!
The CSIRT team is part of our Cybersecurity Defense Centre, which also includes our Sandvik SOC team and a Cybersecurity Architect team. All three teams work closely together with the same goal in preventing and handling cybersecurity incidents, from detection to recovery, as well as working proactively in securing Sandvik through the service and product development cycle. You'll be part of the team that finds the entry point of an attack, figuring out what was exposed and if any data was extracted and together you constantly evaluate our attack-surface and how to protect Sandvik in the best possible way.
Your mission
In this position, you work in our CSIRT, ensuring an active safeguarding of our IT environment, together with the management of information security risks.
Furthermore, your detailed responsibilities include:
being part of the team leading the technical work within complex and long running incidents
assist in the development of new tools as well as adapt current; helping us perform our detection and respond quicker and better
assist in develop ways to prevent cyber related challenges that we can get affected by, or just don't want to have
collaborate with our stakeholders in security matters
Your character
We're looking for someone with at least three years of practical experience in a similar Cybersecurity role, including experience of working with incident handling. We see it as beneficial if you have earlier experience in Python scripting, Kusto Queary Language, Penetration testing and Agile Way of Working. It is also beneficial if you have attended any Incident Response SANS (or equivalent) course. Since we act on a global scale, you're efficient in both written and verbal English.
In order to be a suitable for this role, here's a few experiences needed:
Practical hands-on experience with SIEM and EDR technologies
Understanding of the NIST Cybersecurity Framework
Practical hands-on experience of Microsoft 365 Security Products
Practical familiarities with PowerShell
Experience from a big enterprise environment
Experience in infrastructure and platform services, such as Azure, AWS, Google Cloud or similar
Understanding of Digital Forensics and Malware investigation
Familiar with the Linux OS environment
Ability to write detailed technical documentation
As a person, you're analytical with an interest in new technology as well as the will to drive initiatives and activities toward efficient solutions. You're also socially secure, with an affinity for sharing knowledge between yourself and your colleagues.
Our culture
At Sandvik, we're tech driven, innovative and entrepreneurial. We believe that success is a team effort so we value diversity and are committed to creating an inclusive culture where people can be themselves and reach their full potential. So, we invest in supporting each other, learning together and celebrating our differences. Visit our stories hub, LinkedIn or Facebook to get to know us further.
Application
Send your application no later than January 16, 2023. Read more about Sandvik Group and apply at home.sandvik/career (Job ID: R0044242).
As we aim for a fair recruitment process, we utilize assessment tools to safeguard objectivity. When you apply for this job, you will therefore receive an invitation via email to a personality and logic ability test. Feedback comes immediately after the test has been completed and the selection process begins after the application deadline.
Contact information
For further information about this position, please contact:
Daniel Häggquist, Acting Manager Cybersecurity Defense Center, +46 (0)72 235 32 80
Union contacts - Sweden
Malena Rackner, Unionen, +46 (0)26-26 27 48
Göran Norell, Akademikerföreningen, +46 (0)26-26 65 74
Peter Olsson-Andrée, Ledarna, +46 (0)26-26 19 84
For more information about the recruitment process, please contact HR Services, +46 (0)26 261 444.
Recruitment Specialist
Irene Sveen
Sandvik is a global high-tech engineering group offering solutions that enhance productivity, profitability and sustainability for the manufacturing, mining and infrastructure industries. We are at the forefront of digitalization and focus on optimizing our customers' processes. Our world-leading offering includes equipment, tools, services and digital solutions for machining, mining, rock excavation and rock processing as well as advanced materials. In 2021 the Group had approximately 44,000 employees and revenues of about 99 billion SEK in about 150 countries.
Så ansöker du Sista dag att ansöka är 2023-01-16
Klicka på denna länk för att göra din ansökan Omfattning Detta är ett heltidsjobb.
Arbetsgivare Sandvik AB (org.nr 556000-3468)
Storviltsgatan 10 (
visa karta)
115 47 STOCKHOLM
Arbetsplats Gasverket Stockholm
Jobbnummer 7306003
Observera att sista ansökningsdag har passerat.