Job Description

Do you want to join a growing team of top professionals who invest time and effort into teaching, career growth and cultivating of employees into the next generation of IT experts?

Span is an international IT company with a global reach specializing in high-quality information systems design and management services, as well as tech support for customers and enterprises. We're constantly improving, advancing and adopting new trends, new skills and new expertise, giving our employees virtually endless opportunities for professional development.

Cyber Security Incident Response Specialist is responsible for executing defined needs, assisting in the design, development, and implementation of responses to security incidents, and adhering to established protocols and legal regulations. Internally, they
primarily communicate with teams that are part of the Security Operations
Center, the Cyber Security department, and architects and engineers from other
technical departments. Externally, they communicate with clients (security
directors, IT directors and top level management).

It’s important to stress out that Span Cyber Security Incident Response management is active in all phases of incident lifecycle (before, during and after), and therefore this role cultivates interdisciplinary approach to cyber resilience, cyber crisis management & communication, and stakeholder management.

What you'll do:

• Oversee Incident Response - manage the entire incident response process from detection to resolution with dedicated team of Cyber Security Analysts and other Subject Matter Experts
• Coordinate Teams - work with various teams, including BlueTeam & Cyber Security Analysts, Cyber Architects, Cloud and Security Architects, Developers, IT, legal, PR, and HR, to ensure a swift and effective response
• Incident Documentation - document all activities and decisions made during the incident response process
• Regulatory Compliance - collaborate with our Legal and GRC teams, as well with the regulators
• Root Cause Analysis - conduct thorough analyses to identify the root cause of incidents and recommend preventive measures
• Stakeholder Updates - provide regular updates to stakeholders, including executives, customers, and prepare updates for regulatory bodies
• Crisis Communication - manage internal and external communications with key stakeholders during a crisis to maintain trust and transparency (no public relations or media communication is expected).

What we expect:

This is not a technical position, but it is very dynamic. It is perfect for people with a technical background, strong organizational abilities, and a desire to advance their careers in a field directly associated with cyber security but in a managerial segment.