EMC RSA Practice Consultant - Network Security Incident Response (SR) Job Listing at EMC in Scottsdale, AZ

Computer Hardware, Computer Software

Title EMC RSA Practice Consultant - Network Security Incident Response (SR)
Location(s) US - Arizona - Scottsdale
US - California - Los Angeles
US - California - San Francisco
US - Colorado - Denver
US - Florida - Jacksonville
US - Florida - Miami
US - Florida - Tampa
US - Georgia - Atlanta
US - Illinois - Chicago
US - New Jersey - Berkeley Heights
US - New York - New York City
US - North Carolina - Raleigh
US - Pennsylvania - Pittsburgh
US - Texas - Austin
US - Texas - Dallas
US - Texas - Houston
US - Utah - Salt Lake City
US - Virginia - Reston
US - Washington - Bellevue
US - Pennsylvania - West Conshohocken
US - Massachusetts - Bedford
US - Washington DC
Business RSA
Functional Area(s) Professional Services
Requisition ID 99947BR
Job Description
Job Title: EMC RSA Netwitness Network Security Forensics Incident Response Consultant

RSA, The Security Division of EMC, is the premier provider of security solutions for business acceleration, helping the world's leading organizations succeed by solving their most complex and sensitive security challenges. RSA's information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle – no matter where it moves, who accesses it or how it is used.

We would like to speak with candidates interested in the position of Network Security Forensics Incident Response Consultant, leveraging the NetWitness product line. NetWitness® is a revolutionary network monitoring platform that provides enterprises a precise and actionable understanding of everything happening on the network. NetWitness solutions are deployed in customer environments to solve a wide range of challenging information security problems including: insider threats, zero-day exploits and targeted malware, advanced persistent threats, fraud, espionage, data leakage, and continuous monitoring of security controls.

Job Description

The IR consultant provides RSA customers with rapid tactical insight into the activities taking place on their networks. Through the capture and expert analysis of live network traffic utilizing the NetWitness NextGen platform the consultant determines the overall state of the network and identifies and reports all areas of concern. Performs research and develops techniques to identify and mitigate threats. Stays abreast of emerging threats and develops creative solutions to solve customer issues.

Responsibilities:

· Conduct incident response engagements

· Summarize and report findings to key stakeholders

· Network Security Forensics Incident response subject matter expert

· Project management

· Mentor junior staff member’s

Required Skills and Experience:

· Excellent written/verbal communication and interpersonal skills

· Network Security Forensics Analysis Experience utilizing tools such as WireShark, enCase, FTK, Netwitness or similar

· Host Based Forensics Analysis Experience utilizing tools such as enCase, FTK, Mandiant or similar

· Prior Incident Response Security Experience

· Network capture traffic analysis and forensics

· Malware analysis / reverse engineering techniques and tools would be a plus

· Ability to distill complex technical concepts into business terms that decision makers can use to quickly take action

· Expert level knowledge of typical attack vectors and system penetration techniques

· Advanced Linux/Windows skills

· Familiar with NIST guidelines (800-61, 800-86)

· Understanding of Network Protocols and security infrastructure (proxies, firewalls, email filtering technologies, and network intrusion detection systems)

Desired Skills: (Nice to have)

· Experience with network capture and analysis products and advanced flex parser development

· Any Prior Programming in one or more language would be plus (C#.NET or Java (J2EE))

· Red Teaming

Experience and Education Qualifications

· 3 or more years in incident response role

· BS/MS in Computer Science or equivalent experience

· Certifications (GIAC, CEH, etc)

· Active top secret security clearance is preferred, not required

Travel

· Up to 50% national travel required

In addition to a personal interview, the candidate will be required to pass background verification. We offer competitive compensation and comprehensive benefits. RSA NetWitness is an equal opportunity employer.

MNST2

Region NA