Address
SalaryJob Purpose
The role of the Senior Information SecurityIncident Response Specialist is to oversee and prioritize actions during the detection, analysis, containment and remediation of an Information Security incident. They are also responsible for conveying the special requirements of high severity incidents to the Cyber Security and Architecture Division, the IT Business Unit, Honda North American staff, our Dealer, and our Third Parties and Suppliers as the Tactical Leader. They are the Process Owner for Security Incident Response Plan and processes.
The scope of this role is providing cybersecurity detection and response services to all 4 critical business environments: Enterprise IT (Offices, Data Centers, End User Devices), Manufacturing OT (Plants, Distribution Centers, Robots, IoT sensors), Connected Products and the Connected Ecosystem of 3rd party suppliers, dealers, service providers throughout the North America Region.
The scope of this role is providing cybersecurity detection and response services to all 4 critical business environments: Enterprise IT (Offices, Data Centers, End User Devices), Manufacturing OT (Plants, Distribution Centers, Robots, IoT sensors), Connected Products and the Connected Ecosystem of 3rd party suppliers, dealers, service providers throughout the North America Region.
Key Accountabilities
Manage Incident Response: Knowledge of IT Incident response methodology and planning; ability to develop, implement and evaluate the Incident Response strategies, procedures, and policies to minimize the impact of IT incidents and offer rapid recovery.
- Leads Tactical IR team for OT, IT, Connect Enterprise, and Connected Vehicle.
- Leads and coordinates the Incident Plan activity (isolation, containment, and remediation),
- Invokes the Security Incident Response plan activity.
- Coordinate with GRC, Legal and HR on possible compliancy and regulations to be taken into account during Security Incident Response activities.
- Manage the Security Incident Response stakeholders on their response actions and makes sure that their Incident Response responsibilities are acknowledged.
- Manage Incident Response Retainer services and supplier.
- Consults on automating incident identification, reporting, and configuring systems to align them with business rules and processes.
- Provides technical guidance to support others on all phases of Incident Response and the implementation of emerging tools and technologies. This may include the necessity to be onsite at a Honda facility or Affiliate facility. Effectively interface with law enforcement other government agencies, Auto-ISAC, and Honda Motor and reporting on security incident status and remediation actions
Incident Response Planning: Knowledge of IT Incident response methodology and planning; ability to develop, implement and evaluate the Incident Response strategies, procedures, and policies to minimize the impact of IT incidents and offer rapid recovery.
- Leads in developing and improving the current Incident Response plans and continual improvement of the Incident Response process, playbooks, training and metrics.
- Advises Security and Application Team and Unit Leads on security control improvement required to address security incidents.
- Lead tabletop and other security exercises.
- Owns the maintenance of the Enterprise Security Incident Response Process and supporting Playbooks.
- Monitors and assesses repeated incidents to explore root causes, record findings, and carry out recovery strategies.
- Reviews the effectiveness of the current response, support processes, plans, and tools; recommend innovative solutions and drive actions for improvements.
- Trains others on all phases of Incident Response plans and their management.
- Provides Honda NA guidance and advice around cyber incidents, forensics, and Incident Response.
- Describes specific current threats and planned preventive measures and solutions.
- Manages the design and implementation of Incident Response plans across varied systems and networks.
Communicating Complex Concepts: Knowledge of effective presentation tools and techniques to ensure clear understanding; ability to use summarization and simplification techniques to explain complex technical concepts in simple, clear language appropriate to the audience.
- Creates and distributes Security Incident Management Reports to all levels of IT and business staff.
- Uses subtle cues to determine the language and experience level of an individual or group.
- Introduces technical terminology to listeners in the context of the product or service.
- Uses effective analogies to help an audience understand a novel feature of a product or service.
- Explains important details as they relate to the basic value of the product or service.
- Approaches communication challenges from various angles to find the one that works.
- Proceeds to next level of information when audience is ready.
Qualifications, Experience, and Skills
- IS related bachelor’s degree and/or equivalent work experience
- 8-10 years of IT operations work experience
- 5 years of security incident work experience or equivalent
- Relevant Certifications: CRISC, ECIH, EC-Council Certified Incident Handler, GIAC Certified Incident Handler, CISSP are considered a plus
- Knowledge of security standards (NIST, ISO27001, CIS) and financial/cybersecurity frameworks
- Cyber Security: Knowledge of network attacks and the defenses used; ability to defend and prevent electronic threats, theft and attacks.
- Cybersecurity Risk Management: Knowledge of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
- Cloud Security: Knowledge of tools, technologies and processes of cloud security; ability to minimize security risks to secure cloud computing services.
- Computer Forensics: Knowledge of technologies, methods and tools of forensics investigations for IT security violations or potential threats; ability to identify, uncover and evaluate violations, warning reports, suspected incidents and insidious events.
- Information Security Technologies: Knowledge of technologies and technology-based solutions dealing with Information Security issues; ability to protect Information Security across the organization using encryption technologies and appropriate security software.
- Technical Excellence: Knowledge of a given technology and various application methods; ability to develop and provide solutions to significant technical challenges.
- Domain Knowledge: Knowledge of a specific domain, its current trends, directions, and regulatory considerations; ability to apply domain-specific knowledge to relevant situations.
- Influencing: Knowledge of effective influencing tactics and strategies; ability to impact decisions within and outside own organization.
- Judgment and Decision Making: Knowledge of the decision-making process; ability to carefully evaluate the impact of emerging business situations and choose the best path forward communicating actions and activities that maximize organizational performance.
- IT Risk Management: Knowledge of tools, techniques, approaches, and processes of IT risk management; ability to apply risk management methods to information technology to manage IT risk.
- Conceptual Thinking: Knowledge of thinking and reasoning at a conceptual level; ability to identify the critical ideas and interdependencies among system elements that impact performance.
Workstyle
- Hybrid
Benefits and Total Rewards
What differentiates Honda and makes us an employer of choice?
Total rewards:
Total rewards:
- Competitive base salary
- Pay will be based on several variables that includes but not limited to geographic location, work experience, education, etc.
- Annual Bonus
- Overtime
- Industry-leading Benefit Plans (Medical, Dental, Vision)
- Paid time off, including vacation, paid holidays, sick time, and personal days
- 401K Plan with company match + additional contribution
- Relocation Eligible
- Lifestyle Bonus
Career Growth:
- Advancement opportunities
- Career mobility
- Education reimbursement for continued learning
- Training and Development programs
Additional Offerings:
- Wellbeing program
- Community service and engagement programs
- Product programs
- Free drinks onsite
Honda is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.
