Overview

As a Senior Security Incident Responder for Sita Global Services (SGS) you will be joining to Sita Command Center Security Operations Center (SCC SOC), to help grow our professional team and our Incident Response practice.
As a Security Incident Responder, you will be engaged in all major attack-related events, you will proceed with the Incident analysis and response for the verified security incidents. You will be based in Montreal and will collaborate with multiple global teams within the organization reporting to the Manager Service Operations.
At SITA we are meeting the new needs of travel \xe2\x80\xa6.. today! Are you ready to join us?

What you will do:
As a Security Incident Responder, you will be responsible for:

• Being the first line to respond to the identified network or system cyber incidents.
• Managing cybersecurity incidents, by knowing when and how to identify, contain, eradicate and recover.
• Analyze host and network forensic artifacts, identify patterns and behaviors related to threat actors.
• Working with team members in developing, testing new security tools, evolving our Incident Response process and procedures.
• Using MITRE ATT&CK framework to structure all the cyber investigations.
• Using threat intelligence indicators to help enforce detection and response.
• Analyzing alerts in SIEM and EDR solutions, recommending how to remediate or mitigate threats.
• Create short reports or briefs to provide an accurate description of the current threat landscape and associated risk.
• Maintain a high level of confidentiality, Participate in Table Top Exercises, provide support to SOC analysts as needed.

Qualifications

Who you are:

• Bachelor\'s Degree in IT or equivalent in the related field,
• 5+ years of related experience working in Cyber Defense with experience in Incident Response and a minimum of 3+ years in Security Operations
• Experience with cyber threats, and related tactics, techniques and procedures.
• Experience in supporting and leading Incident Response steps.
• Understanding industry recognized security frameworks (Mitre ATT&CK, NIST/SANS Incident Response, etc.,).
• Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
• Knowledge of SIEM solution (ELK, McAfee), EDR/XDR, Threat Intelligence platforms, Host forensics and Network analysis techniques.
• Good knowledge in creating and implementing rules, signatures, and alerts within SIEM, EDR/XDR, IDS.
• Subject matter expertise in analyzing network packets, SIEM alerts, server and application logs to investigate incidents for anomalous/malicious activities.
• Ability to respond to crises objectively, to work in a team and work independently as needed.
• At least one Information security certification, such as Security +, CySA+, CIH, GCIA, GCFA, CISSP or related cyber-security

What we offer:
SITA\xe2\x80\x99s workplace is all about diversity: many different countries and cultures are represented in our workforce, and colleagues who\xe2\x80\x99ve been working here for decades collaborate with those just out of college and early in their careers. SITA is a place of change and constant improvement, where we\'re always pushing ourselves to find better ways of doing things: smarter, quicker, easier, for us and our customers and for their customers too.
And we offer all the good stuff you\xe2\x80\x99d expect like holidays, bonus, flexible benefits, medical policy, pension plan and access to world class learning.
Welcome to SITA
SITA is the world\xe2\x80\x99s leading specialist in air transport communications and information technology. We don\xe2\x80\x99t just connect the global aviation industry. We apply decades of experience and expertise to address almost every core business, operational, baggage, and passenger process in air transport.
We design, build, and support technology solutions all with one vision to create easy air travel every step of the way. As an organization, we cover 95% of all international air travel destinations and work with over 2,800 air transport and government customers in every corner of the globe. Are you ready to explore the opportunities?
In case of issues with uploading your CV or accessing the application system, please contact us @ careers@sita.aero