Cybersecurity Incident Response Engineer (HYBRID, local Orange County, CA)

CGS Business Solutions is committed to helping you, as an esteemed IT Professional, find the next right step in your career. We match professionals like you to rewarding consulting or full-time opportunities in your area of expertise. We are currently seeking Technical Professionals who are searching for challenging and rewarding jobs for the following opportunity:

Our client, a National not-for-profit educational institution, is hiring for an aspiring and talented Cyber Security Incident Response Engineer. Reporting to the VP, this role works closely with the Technology teams and other key stakeholders, assuming a role of influence to ensure the process and procedures for cybersecurity Incidents, threats and attacks are dealt with appropriately. The successful candidate will advise and act to protect the company s hardware, software, networks, and data from threats. The successful Incident Response Engineer will fully understand the IT infrastructure, monitor, identify and address vulnerabilities that create potential risks to our information security and that of our customers. This position will be key to shaping the plan, implementation, upgrades, and monitoring of and setting of security measures as well as protection of all systems and information. *Note that this is a 6 month contract to perm role and AT LEAST one day in the office in Irvine is required.

Required Qualifications:

• 5+ years minimum of combined experience and education. Proven experience which includes 2+ years of hands-on specific to incident response and threat detection, virtual threat tracking and exploit/hack tool research or development experience PLUS a Bachelor s degree (B.A.) Information Security/ IT or MIS.
  Ideally at least one certification (acquired or in process) such- EC-Council Certified Incident Handler (ECIH), GIAC Certified Forensic Analyst (GCFA), and CompTIA Cybersecurity Analyst (CySA+) certifications.
  Familiarity with privacy laws, data security regulations, and frameworks, such as SOC2, NIST, COBIT, ISO 27001. Strong understanding of and experience with NIST and Mitre Attack frameworks including process and all the controls. Experience Implementing and Administering Microsoft tools such as End Point Protection, O365 Defender, Entra, Sentinel, Azure Information Protection, and DLP solutions. Demonstrate competency in selecting methods and techniques for obtaining solutions.
  A deep understanding of and experience with the Cybersecurity Incident Response lifecycle.
  Experience designing, implementing, and enhancing engineering security risk management processes with alignment to policies, standards, procedures, and frameworks.
  Experience responding to requests from internal and external auditors, and/or leading audit activities.
  Experience conducting Security Gap Assessments, for protection planning and threat modelling.
• Must be a self- starter with minimal instruction on day-to-day work and general instructions on new assignments.
  Able to succeed in a fast-paced, deadline driven environment, where small teams share a broad variety of duties.
  Take ownership and display strong initiative and drive to accomplish goals and meet company objectives.
  Committed to learning from mistakes and driven to improve and enhance performance of oneself and others

BACKGROUND CHECK REQUIREMENTS: Must be able to pass Live Scan (Criminal Background Check via fingerprinting). Must be willing to provide and maintain a clear TB test throughout employment.

Major Duties and Responsibilities:

Leads the Incident Response effort and manages the Incident Response Lifecycle, including reporting on cyber-attacks, incidents, and breaches, as well as investigating and resolving issues to mitigate vulnerabilities and threats, addressing cyber-risk.
Responds to critical security incidents and leads escalations to close with response, containment, and remediation.
Responsible for analyzing, designing, managing, and delivering the services required to minimize the negative impact of security incidents and restoring normal service operation as quickly as possible.
Provides functional and technical support to maintain a proactive security posture and ensure protection of electronically and physically stored information assets across organizational systems.
Ensures continuous monitoring is in place for all classified assets.
Mitigates vulnerabilities to maintain a high-security standard.
Performs forensic analysis, including static and dynamic analyses of suspect malware
Knowledge of Microsoft Windows, including registry, logs, and common forensic artifacts
Knowledge of TCP/IP and networking fundamentals, network architecture, and security infrastructure's best practices.
Manages and integrates threat intelligence received from a variety of sources into actionable tasks to address threats and vulnerabilities.
Monitors and scans the networks for vulnerabilities and threat actor activity.
Stays current with the latest information security controls, practices, techniques, and capabilities.
Maintains and tests the Disaster Recovery technologies and processes.
Develops, maintains, and recommends improvements to the BCDR (Business Continuity and Disaster Recovery) plan.
Performs detailed analyses of various security event sources and acts as the interface with other IT and business departments regarding IT security incidents.
Works with all departments to increase cybersecurity awareness and strengthen the human firewall.
Maintains familiarity with business processes, infrastructure, and applications to ensure proper cyber-risk management.
Leads tabletop and simulation tests with the technology department and stakeholders, as appropriate.

About CGS Business Solutions:
CGS specializes in IT business solutions, staffing and consulting services. With a strong focus in IT Applications, Network Infrastructure, Information Security, and Engineering. CGS is an INC 5000 company and is honored to be selected as one of the Best IT Recruitment Firms in California. After five consecutive Fastest Growing Company titles, CGS continues to break into new markets across the USA. Companies are counting on CGS to attract and help retain these resource pools in order to gain a competitive advantage the rapidly changing business environments.