Analyst-Cyber Response

Job Description

Job Title:Business Analyst Cyber Incident ResponseJob Code:Department:Global Security DepartmentLocation :EMEA/NA/APReport To:Head of Cyber Incident ResponseFLSA (US Only):ExemptDirect Reports:N/ARevised:Feb 2021About Invesco Information SecurityDo you aspire to be a part of a global organization that recognizes security as a critical component in its trust relationship with clients, staff, business partners and shareholders Do you want to collaborate and learn from like-minded security professionals under the guidance of a former Deputy Director of the FBI in developing an intelligence-driven approach to security Do you want to work in a highly collaborative and consultative environment that values everyone s ideas on how to best protect, detect and respond to the latest physical and cyber threats impacting the financial industry If this sounds like a team you want to be a part of, read on to learn more about the opportunity to join us.Job Purpose (Job Summary): The Analyst Cyber Incident Response will be responsible for administrative assistance relating too communication and escalation of incidents which require highly technical analysis, such as infrastructure intrusions and advanced malware infections which have been identified by the Global Security Department (GSD) team. Other duties will include assistance with reporting, lessons learned capture and task setting; therefore, some detection and response security knowledge is advantageous. Assisting the Principal members of Cyber Incident Response team with documentation to explain what happened in detail at an executive summary level. Incident scenario administration as well as helping conduct Cyber Simulation exercises, and lessons learned, will also be a responsibility. Track and facilitate updates to Cyber Incident Response Playbooks. This position will work directly with the other members of Cyber Incident Response team globally to provide coverage in the Europe (EMEA), North American (NA), and Asia Pacific (AP) regions and support the work of the overall team.Key Responsibilities / Duties:

• Provide administration for incident response efforts throughout the entire incident lifecycle.
• Schedule and facilitate reviews of playbooks, policies, scenario plans and procedures against agreed operation timescales, or following an incident and the continuous improvement tasks identified.
• Provide administrative assistance to develop and maintain GSD incident response metrics associated with response effectiveness and performance, preventive and corrective actions, as well as trends
• Assist in the upkeep of GSD incident management policies, standards, incident scenario plans and procedures aligned with industry standards, technology best practices, as well as infrastructure and organizational changes (e.g. Mergers & Acquisitions, Joint Ventures etc)
• Provide assistance to the team effort to document cyber risk scenarios and create playbooks as well as standardized response templates.
• Assist with regular table-top exercises and other response plan tests to ensure that scenario response plans are accurate, up to date, and aligned with business and technology requirements.
• Help to plan and conduct training exercises, workshops and Cyber scenarios across different lines of businesses to test the cyber incident response processes and playbooks
• Maintain communication tools to be used during times of crisis considering various scenarios

• Provide administrative assistance for the successful delivery of GSD projects initiated towards improving incident response, by working directly with key business stakeholders, Invesco s executives and project teams.

FSA Training and Competence (UK Only):Approved Person NoCovered by FSA Training and Competence NoWorking Conditions:

• Normal office environment with little exposure to noise, dust and temperatures.
• The ability to lift, carry or otherwise move objects of up to 10 pounds is also necessary.
• Normally works a regular schedule of hours, however hours may vary depending upon the project or assignment.
• Hours may include evenings and/or weekends and may include 24 hour a day on call support by pager and/or cell phone.
• Willingness to travel both domestically and internationally. Frequency and duration to be determined by manager.

Work Experience / Knowledge:

• Some experience in Information Security or a Technology industry is preferable or experience in a financial services organization with an understanding of incident management experience.
• Must have, or willing to learn, a knowledge of incident response methodologies is a plus.
• Ability to visualize and articulate a cyber incident.
• An understanding of business continuity planning and disaster recovery processes / procedures implemented in a global environment or willingness to learn.
• Preferred to have good understanding, but willing to learn to gain a hands-on experience with SIEM technologies and other forensics, evidence collection, and incident remediation tools.
• Strong written and verbal communication skills including the ability to interact directly with business clients who may have minimum IT experience.
• Good understanding or willingness to learn of the regulatory standards that govern GSD Incident Management and investigation practices such as state and federal privacy laws, Electronic Communications Privacy Act.

Skills / Other Personal Attributes Required:

• Cultural awareness globally.
• Possesses diplomacy and cooperative style necessary to deal effectively with all types of personalities and across all functional disciplines globally.
• Someone who seeks solutions to problems and has the tenacity to overcome barriers in a diplomatic and cooperative manner.
• Track record of success in planning and implementing projects.
• Entrepreneurial spirit; hands-on and quick decision-maker.
• Strong analytical skills that show the ability to define, research and collect, analyze data, establish facts, draw valid conclusions, and make fact-based decisions in a timely manner.
• Motivated self-starter with ability to work independently and remotely with limited supervision.

Formal Education: (minimum requirement to perform job duties)

• BS or BA degree, preferably in technology/business or equivalent experience.

License/Registration/Certification: (minimum requirement to perform job duties)

• Interest in learning or already obtaining/ed relevant certifications (or course completion) such as CCFE, CHFI, CEH, GISF, and / or CISSP is a plus.

Competency Requirements Invesco Core:*Please refer to IPMP manual for competence descriptions

• We are passionate about our clients success
• Working together, we achieve more
• We believe in the continuous pursuit of performance excellence
• We earn trust by acting with integrity
• People are the foundation of our success

,

Keyskills :
incident managementcorrective actionsbusiness continuitydisaster recoveryjoint venturesanalytical skillstechnical analysisfinancial servicesbusiness continuity planningrecord of successmergers acquisitions