SIRCC coordinator

Job Description:

About DXC Bulgaria  

We are DXC - a Fortune 500 global IT services leader. In Bulgaria, we are among the largest employers with over 4,000 employees working on the company's entire IT portfolio. We are flexible - we provide everything you need to comfortably work from home, but we also keep our offices open for collaboration, meetings, and building a strong team spirit. We tailor everyone’s development path to their individual interests through training and additional certifications.

Our experience and desire to grow, our mission, and our values ​​create an environment where ambitious people become successful at home. At home - in Bulgaria.

The Security Incident Coordinator will work directly with and support the Tier 1 Analysts as the first point of contact for all DXC internal Security Incident and will analyze and perform risk assessments on the potential impact to the business of security events/incidents. He/She will be coordinating the response to security incidents by the technical groups within the business, including communication with subject matter experts and between business units, directing technical resources, follow-up on tasks assigned by management to business units, and working with technical resources to complete actions if required.

Daily challenges

• Analyze and perform risk assessments on the potential impact to the business of security events/incidents.
• Coordinating the response to security incidents by the technical groups within the business, including communication with subject matter experts and between business units, directing technical resources, follow-up on tasks assigned by management to business units, and working with technical resources to complete actions if required.
• Ensuring that significant security incidents are reported clearly and concisely managed in a reasonable time frame.
• Initial monitoring and analysis of the output from security devices such as IPS, malware alerts, firewall logs, proxy logs, system logs, and so on.
• Perform behavioral analysis of malware samples in a controlled environment, document the results, and provide the samples and documentation to a reverse engineering team.
• Compiling, reviewing, and submitting incident reports for final peer and management review, prior to release to the business.
• Research new vulnerabilities and security threats reported by external security entities, perform and document risk assessments as to the potential impact of said vulnerabilities and threats to the business. Communicate this information to management and other business units as appropriate.
• Contributing to existing process and procedure documentation, and assist in creating new process and procedure documentation in response to dynamically changing threats, information security landscapes, and business requirements.

eXperience and skills required

• Bachelors Degree in Information Security or related discipline, or any of the following or similar related certifications: CCNA, CEH, OSCP, OPST, eCPTT, GCIH or GSEC
• In-depth understanding of TCP, IP, and other lower level network protocols, as well as common higher level protocols such as HTTP, HTTPS, SMTP, POP3, FTP, and so on, and the ability to analyze captures of network traffic.
• Familiarity with network security devices, including firewalls, Intrusion Prevention Systems, Intrusion Detection Systems, and so on.
• Understanding of modern network operating systems, how they communicate, and in particular familiarity with the Microsoft Windows line of Operating Systems.
• Strong understanding of the malware products available on the market, how anti-malware software works, and how it is used in an Enterprise environment.
• Basic knowledge about common types of Information Security threats, such as buffer overflows, cross site scripting, SQL injection, phishing, and other techniques used to compromise security.
• The ability to perform analysis of log files from multiple different devices and environments, and identify indicators of security threats.
• Familiarity with Information Security practices and procedures, including investigative processes, and requirements for security audits such as SOX, SAS70, or ISO27001.
• Strong English writing skills, in particular the ability to communicate clearly with correct spelling, grammar, sentence structure.
• Understanding of, and experience using, Unix-style operating systems, such as Solaris, Linux, or BSD.
• Experience with multiple types of enterprise level anti-malware packages currently available.
• Experience with Operating System security, administration, and logging in an enterprise environment.
• Experience with basic scripting languages such as bash, Python or PowerShell.
• Previous experience writing technical documentation and/or process documentation.
• Experience dealing with Cybercrime and working in an environment that requires an investigative response when dealing with computer based electronic evidence.
• Bachelors Honors project in Information Security.

Company benefits

• Competitive remuneration package
• Additional Medical & Life insurance
• 4 days additional paid leave (total: 24 days)
• The possibility to work entirely remotely
• Food vouchers
• Training, continuous learning and career development in the largest IT company on the market
• Unlimited access courses from a bunch of external partners for the best learner's experience (e.g., LinkedIn Learning, Udemy)
• Access to a foreign language learning platform
• Stable employment in an international company
• Advancement opportunities within the organization (a variety of interesting projects with the array of technologies and tools)
• Flexibility in work arrangement (hybrid or fully remote work, the home office culture is in our DNA)
• Workplace equipment to organize your home office (e.g., chair, desk, additional monitor, headset etc.)
• DXC Partner courses and certifications (Microsoft, SAP, ServiceNow, AWS, Google, Dell Technologies, IBM, Micro Focus, Salesforce, Red Hat, VMware, Workday)
• Employee Referral Program - a financial bonus for the referrer for successful candidate recommendation
• Employee Recognition Program with points assigned by colleagues for the recognized employees (exchangeable for prizes)
• Employee Assistance Program (providing 24/7 support for employees and their families in difficult life situations)
• Opportunity to join our numerous charity and ecology-related events organized by our Employee Ambassadors team

We Deliver eXcellence for our Customers and colleagues every day. Our values form the foundation of everything we do and every decision we make.

If you feel comfortable with the above-mentioned requirements, please send us your CV in English. We continue with stay-at-home recruiting and video interviewing for the foreseeable future.

Please note only shortlisted candidates will be contacted.

Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here.