EMC RSA Practice Consultant - Network Security Incident Response (SR)
EMC - Scottsdale, AZ

This job posting is no longer available on EMC. Find similar jobs: Rsa Practice Consultant jobs - EMC jobs

Job Title: EMC RSA Netwitness Network Security Forensics Incident Response Consultant
RSA, The Security Division of EMC, is the premier provider of security solutions for business acceleration, helping the world's leading organizations succeed by solving their most complex and sensitive security challenges. RSA's information-centric approach to security guards the integrity and confidentiality of information throughout its lifecycle - no matter where it moves, who accesses it or how it i s used.
We would like to speak with candidates interested in the position of Network Security Forensics Incident Response Consultant, leveraging the NetWitness product line. NetWitness® is a revolutionary network monitoring platform that provides enterprises a precise and actionable understanding of everything happening on the network. NetWitness solutions are deployed in customer environments to solve a wide range of challenging information security problems including: insider threats, zero-day exploits and targeted malware, advanced persistent threats, fraud, espionage, data leakage, and continuous monitoring of security controls.
Job Description
The IR consultant provides RSA customers with rapid tactical insight into the activities taking place on their networks. Through the capture and expert analysis of live network traffic utilizing the NetWitness NextGen platform the consultant determines the overall state of the network and identifies and reports all areas of concern. Performs research and develops techniques to identify and mitigate threats. Stays abreast of emerging threats and develops creative solutions to solve customer issues.

  • Conduct incident response engagements
  • Summarize and report findings to key stakeholders
  • Network Security Forensics Incident response subject matter expert
  • Project management
  • Mentor junior staff member's
Required Skills and Experience:
  • Excellent written/verbal communication and interpersonal skills
  • Network Security Forensics Analysis Experience utilizing tools such as WireShark, enCase, FTK, Netwitness or similar
  • Host Based Forensics Analysis Experience utilizing tools such as enCase, FTK, Mandiant or similar
  • Prior Incident Response Security Experience
  • Network capture traffic analysis and forensics
  • Malware analysis / reverse engineering techniques and tools would be a plus
  • Ability to distill complex technical concepts into business terms that decision makers can use to quickly take action
  • Expert level knowledge of typical attack vectors and system penetration techniques
  • Advanced Linux/Windows skills
  • Familiar with NIST guidelines (800-61, 800-86)
  • Understanding of Network Protocols and security infrastructure (proxies, firewalls, email filtering technologies, and network intrusion detection systems)
Desired Skills: (Nice to have)
  • Experience with network capture and analysis products and advanced flex parser development
  • Any Prior Programming in one or more language would be plus (C#.NET or Java (J2EE))
  • Red Teaming
Experience and Education Qualifications
  • 3 or more years in incident response role
  • BS/MS in Computer Science or equivalent experience
  • Certifications (GIAC, CEH, etc)
  • Active top secret security clearance is preferred, not required
  • Up to 50% national travel required
In addition to a personal interview, the candidate will be required to pass background verification. We offer competitive compensation and comprehensive benefits. RSA NetWitness is an equal opportunity employer.



EMC - 23 months ago - save job - copy to clipboard