By continuing to use this site you agree to and accept our cookie policy

Enterprise Security Architect (Remote UK)

swindon, wiltshire


Company DescriptionSince 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.Job DescriptionMandiant Security Transformation Services helps organizations build an effective security operations program that minimizes organizational risk and reduces the impact of security breaches. With a targeted focus in cloud architecture, our consultants work from initial assessment and configuration review of security controls, to detailed technical recommendations that can be practically implemented to harden environments (both cloud and on-premise), enhance visibility and detection, and improve processes to reduce the risk of compromise.Mandiant seeks Enterprise Architect, Incident Response Remediation Consultants with strong technical skills and an eagerness to lead projects and work with our clients. Candidates will need to apply their Active Directory, network architecture, security hardening, and logging enforcement skills to assist clients in improving their security posture as well as implementing containment and remediation actions during incident response engagements. Our consultants must be comfortable working in teams to tackle challenging projects, communicating with clients, providing hands-on assistance with containment and remediation activities, and creating and presenting high-quality deliverables.What You Will DoDesign and assist clients with network architecture enhancements and configuration modifications to defend against identified threats and attacker techniquesConduct Incident Response containment and remediation engagements for clients Create and document detailed remediation guides and tracking documents, for clients to leverage to prepare for, and execute a coordinated remediation event Recommend and document specific counter-measures and mitigating controls Articulate Mandiant’s capabilities in marketing discussions, proposal efforts, and capability briefings Develop comprehensive and accurate reports and presentations for both technical and executive audiences Effectively communicate remediation strategies and workstreams to client stakeholders including technical staff, executive leadership, and legal counsel QualificationsThe successful candidate will have 5+ years’ of information security experience and additionally be able to demonstrate a strong proficiency in three or more of the following areas:Prior experience as a lead system administrator or network engineer in an enterprise environment Thorough understanding of enterprise security controls in Active Directory / Windows environments Active Directory Trusts and Architectures Privileged Access Management best practices Windows and Unix endpoint hardening and security control enforcement Expertise in enforcing application listing and host-based restrictions Implementation and enforcement of technologies such as Credential Guard and Device Guard Understanding of enterprise networking and knowledge of network segmentation strategies Implementation and management for both network and host-based firewall configurations Implementing logging configurations for network devices and Windows and Unix endpoints PowerShell scriptingAdditional Qualifications:Must be eligible work in EU member states, or Swiss or UK without sponsorshipPrior training and public speaking engagement experience Ability to lead a team of highly technical security professionals Willingness to travel up to 50%


Share this job

Similar jobs