Cyber Incident Response Lead

Owens & Minor is a global healthcare solutions company providing essential products, services and technology solutions that support care delivery in leading hospitals, health systems and research centers around the world. For over 140 years, Owens & Minor has delivered comfort and confidence behind the scenes, so healthcare stays at the forefront, helping to make each day better for the hospitals, healthcare partners, and communities we serve.

Powered by more than 14,000 teammates worldwide, Owens & Minor exists because every day, everywhere, Life Takes Care™.

Global Reach with a Local Touch
140+ years serving healthcare
Over 14,000 teammates worldwide
Serving healthcare partners in 80 countries
Manufacturing facilities in the U.S., Honduras, Mexico, Thailand and Ireland
40+ distribution centers
Portfolio of 300 propriety and branded product offerings
1,000 branded medical product suppliers
4,000 healthcare partners served

POSITION SUMMARY
Owens & Minor is looking for a Cyber Incident Response Lead to investigate and respond to cyber threats. This position is responsible for the investigation, remediation, and communication of cybersecurity incidents. This position is based in India and will work night shift (05:00pm-2:00am IST).

ESSENTIAL JOB FUNCTIONS:

Review security alerts that are escalated by SOC analysts to determine if they constitute an incident
Investigate incidents to determine scope and impact
Take steps to contain and remediate the incident
Record incident details, artifacts, and evidence in incident tracking system
Execute response protocols and playbooks to respond to incidents
Escalate incident response protocols to senior staff when necessary
Communicate with end users to collect information and resolve issues
Collaborate with IT, Legal, and HR teams during incident response process

SUPPLEMENTAL

JOB FUNCTIONS:

Performs additional duties as directed.
Effectively accomplishes set goals while primarily working in a remote capacity.
Will need to be available on an on-call basis for off-hours critical incident response

EDUCATION & EXPERIENCE:

7+ years of experience in cyber incident response and investigations.
5 years of experience in analyzing email headers and contents
3 years of experience in malware investigation and offline malware analysis techniques
2 years of experience in leading cybersecurity incident investigation and response

KNOWLEDGE SKILLS & ABILITIES:
Strong understanding of SIEM log analysis and queries
Strong understanding of Endpoint Detection and Response (EDR) capabilities and behavior.
Strong understanding of network protocols such as TCP/IP, DNS, HTTP, TLS, SMB, CIFS, SMTP, and network traffic analysis
Strong understanding of techniques to investigate phishing, credential theft, ransomware, botnets, and denial of service attacks
Strong analytical and critical observation skills.
Understanding of the MITRE ATT@CK framework
Understanding of cyber incident recovery methodology
Ability to work in a fast-paced environment with minimal supervision.
Ability to create documentation and presentations for peers and management.

ADDITIONAL REQUIREMENTS:

Desired certifications: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Network Forensic Analyst (GNFA), GIAC Cloud Forensics Responder (GCFR), GIAC Enterprise Incident Response (GEIR)

If you feel this opportunity could be the next step in your career, we encourage you to apply. This position will accept applications on an ongoing basis.

Owens & Minor is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, sex, sexual orientation, genetic information, religion, disability, age, status as a veteran, or any other status prohibited by applicable national, federal, state or local law.