Job Purpose:The primary purpose of this role is to support the Cybersecurity Defense, Operations, and Monitoring Manager in delivering comprehensive incident management services. This includes detecting, analyzing, and responding to cybersecurity incidents to minimize their impact on the organization. The team members will play a crucial role in enhancing NHC’s cybersecurity posture and ensuring compliance with relevant guidelines.
Organizational Responsibilities:Reports to Cybersecurity Defense and Operations Manager Incident Detection and Analysis:Monitor security events across NHC systems and networks to detect potential security incidents. Analyze security alerts and logs from various sources to identify and assess the severity of incidents. Conduct root cause analysis to determine the origin and impact of incidents. Incident Response and Management: Develop and implement incident response plans, including detection, analysis, containment, eradication, and recovery from cybersecurity incidents. Coordinate and lead incident response efforts to address and resolve cybersecurity incidents promptly, minimizing impact on operations. Document and report incidents, including root cause analysis and lessons learned, to improve future incident response efforts.

Compliance and Reporting:Ensure compliance with cybersecurity regulations, standards, and best practices. Conduct regular audits and assessments to ensure adherence to cybersecurity policies and procedures. Collaborate with internal and external stakeholders to enhance cybersecurity measures and share threat intelligence. Training and Awareness:Contribute to promoting awareness of cybersecurity incident management policies and procedures across NHC Stakeholder Relationships Key Internal Relationships Cybersecurity Defense and Operations Manager NHC Departments and Business Units Team Members Key External Relationships Regulatory Bodies (e.g., NCA) Industry Partners and Vendors Government and Industry Forums Job Requirements Education Prerequisites:Bachelor’s Degree in Cybersecurity, Information Technology, or a related field. Advanced degree (MBA or Master’s in Cybersecurity) preferred. Professional Experience:
Minimum 2-3 years of experience in incident response and management including root cause analysis, developing incident response plans. Familiarity with compliance frameworks and standards (e.g., ISO 27001, NIST, NCA). Experience in stakeholder engagement, project management and planning.
CERTIFICATIONS (Preferred) Certified Information Systems Auditor (CISA) GIAC Enterprise Incident Responder (GEIR) GIAC Certified Incident Handler (GCIH)