This company is committed to hiring Veterans

Cyber Security Incidence Response Specialist

This job is no longer active. View similar jobs.

POST DATE 9/8/2016
END DATE 11/5/2016

Cushman & Wakefield, Inc. St. Louis, MO

St. Louis, MO
AJE Ref #
Job Classification
Full Time
Job Type
Company Ref #


Job Title

Cyber Security Incidence Response Specialist

Job Description Summary

The Manager, Information Security & Risk is responsible for understanding and responding to threats to the security of all information, networks and computer systems. The individual taking the role will monitor a variety of services and tools (including the Managed Security Service, the firewalls, third party sensor/detector/rating services, internal account activity tools, and threat information services) in order to, predict, detect, and diagnose threat activity, and direct or participate in containment, eradication, and restoration activities.

Job Description


* Develop and maintain comprehensive approach to management of cyber threats, both external and internal, for both client-facing applications and network, and internal applications and networks

* Develop and maintain comprehensive approach to log management, including collection (coherent with ongoing Managed Security Service log collection), recognizing requirements for threat discovery (e.g., access review), compliance reporting (access reporting controls), and retention

* Monitor the Palo Alto firewalls, configuration change detection tools, network monitoring tools, the log management tools, the Managed Security Service, and other such tools a for unusual activity

* Develop awareness of normal network and system behavior, and detect and diagnose abnormal behavior

* Triage incoming Cushman and Wakefield MSS issues: initial assessment and the prioritization of the event, initial determination of incident to determine risk and damage or appropriate routing of security or privacy data request

* Engage, drive, or participate in the Service Management incident response process to drive containment, eradication, and restoration for small security threats; for more complex threats, engage, drive, or participate in the Security Incident Response Process, as defined in the playbooks, to contain and eradicate threats and restore normal operations that existed prior to the threats effects, working with the Service Management Team and others, including Security, Legal, HR, and various other corporate functions and service lines

* Recommend improvements to the Incident Response Playbooks

* Participate in root cause analyses of major security incidents

* Draft After Action Reports (AAR) on Cushman and Wakefield Vendor incidents to analyze pattern, techniques, and data to develop sector specific intelligence to better defend Cushman and Wakefield assets and protect client assets

* Identify and present tactical improvement ideas for incident response, investigation and threat management as well as support for general team operations to leadership team for approval and action

* Manage third party vendors and engagements related to these activities

* Collaborate with IT Management to develop and deploy threat event and impact prediction capability

* Contribute, as a team member, to all other risk, security, and privacy initiatives and services as appropriate

* Work with auditors and vendors who support security and privacy maturity development


* Degree in computer science, engineering or related field

* Certified Information Systems Security Professional (CISSP), or Certified Information System Manager (CISM), or other related certification required

* 8 or more years experience in IT Security positions with 2 or more years experience in active threat monitoring, detection, and remediation

* Demonstrate knowledge of IT processes and network management best practices

* Excellent leadership and communication skills (verbal and written)

* Ability to collaborate with business partners in setting business goals and objectives

* Large multi-national company experience preferred

* Exemplary networking and negotiation skills. Strong motivator and team player

* Strong interpersonal skills and ability to work cross-functionally and across divisions with others

* Demonstrable knowledge of incident response methodologies, IT policies and standards, and awareness and training.

* Knowledge of, and in depth experience with, more than one major IT discipline (e.g., distributed computing, networks, financial applications design and development, IT security and business recovery).

* Strong interpersonal and influencing skills

* Ability to manage and analyze data

* Strong teambuilding skills including promoting cooperation and good working relationships among peers and team members, remaining positive and supportive during change, and building rapport and trust with IT Risk stakeholders and other business partners

* Strong problem solving and program execution skills

* Experience with IT risk standards and industry best practice approaches, such as ISO 27001 / 2, CobiT, COSO, ITIL, etc

* Active personal interest and drive in making the connected-world a safer place

Physical Requirements

* Regularly required to travel from floor to floor and may be required to travel outside between buildings in varying outdoor weather conditions.

* Regularly required to sit or stand for prolonged periods of time

* Use hands to operate office machinery including, but not limited to, telephones, computers, fax, and photocopy machines

* Required to walk, talk, and hear.

Cushman & Wakefield is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.

Cushman & Wakefield is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.