Incident Response Manager

• At least 5 years of professional experience in Information Security with relevant experience in Security incident response
• Demonstrated expertise on IT fundamentals (systems and networks), security best practices as well modern concepts (cloud, DevSecOps, containerization, APIs, AI/ML, secure by design)
• Excellent knowledge of Advanced Persistent Threats, attack tools, techniques, and methods used by adversaries
• Programming and scripting experience in Python or similar
• Extensive understanding of the current threat landscape affecting the financial industry and particularly fintech
• Understanding of current technology and regulatory trends affecting financial institution information security programs
• Excellent written and verbal communication skills and ability to perform working under pressure
• Degree in computer science or related field
• Relevant GIAC certifications or equivalent is an advantage

It's good if:

• You are passionate about Cybersecurity and excited to master the latest trends in technology
• You are self-driven and able to think outside-in. You can think like an attacker and proactively uncover the blind spots
• You can be hands-on but also drive stakeholders to deliver and meet your objectives
• You are thrilled to be at the origin of a new project and make a difference in an international group
  

Support the group cybersecurity strategy and enable innovative prevention, detection, and remediation capabilities in a cloud native environment. You will drive the implementation of automated processes and tools to ensure bolttech’s readiness against the latest cyber threats, their tactics, techniques and procedures.

• Building the monitoring and incident response capabilities of bolttech globally
• Designing efficient incident response playbooks to ensure no stone is left unturned and guarantee appropriate escalation
• Hunting for advanced threats without neglecting the basic hygiene alerts
• Lead security incidents from detection to containment, eradication, and recovery
• Coordinating various stakeholders in and outside of the tech team on incident activities
• Running hands-on malware analysis or digital forensics investigations
• Building Security automation and orchestration. Like in our product development, doing things by hand should be the exception, not the rule
• Developing threat driven detection/monitoring toolset and processes
• Continuously improving bolttech cybersecurity tools and processes based on lessons learnt
• Ensuring compliance with regulatory requirements in terms of preventive measures as well as incident reporting
• Measuring and reporting relevant security metrics to the technology teams as well senior management