Cyber Incident Responder

Job Reference # BR

Job Type Full Time

Your role
Are you keen on working in world class Cyber Security Operations Center for one of the best Swiss private banks? Do you have related experience and are willing to take it further by learning how to defend an enterprise against cyber-attacks? We are looking for an incident response expert who will:

• respond to cyber security incidents covering all phases including identification, containment and eradication
• conduct forensic level analysis of system, accounts, networks, and perform reverse engineering of malware samples
• act as engagement point for wider technology teams within Major Incident Management framework
• support and maintain response strategy to severe incidents and key attack scenarios
• maintain coordination and communication streams horizontally and vertically as part of major cyber related incident handling
• perform technical analysis and triaging as part of incident investigation
• actively collaborate with Cyber Intelligence teams to ensure response capabilities are adequate to the threat
• mentor and train junior analysts in advanced incident response techniques, tactics, and procedures

You'll be working in the Cyber Incident Response team distributed globally, which is a critical function within the Cyber Security Operations Center. You will be collaborating with a peer of teams covering cyber monitoring, hunting, advanced detection, cyber threat intelligence and security engineering. We are global team with the presence in Switzerland, USA and Singapore focusing on pro-active defense capabilities supported by active intelligence consumption. By joining our team, you will have continuous learning possibilities while tracking recent techniques, tactics and procedures of various adversaries.

• 5+ years experience in incident response operations or security operations positions in a large enterprise environment
• experience in investigating and handling data breaches and leading investigation to resolution
• ability to design and write runbooks for frequently occurring incidents
• a natural ability to take the lead and drive the investigation of complex technical issues, with strong analytical and problem-solving skills
• extensive experience performing cyber incident response and root-cause-analysis
• technical understanding of enterprise networks, protocols, their various components, and designs
• strong forensics skills, and an understanding chain of custody requirements
• experience with one or more programming/scripting languages such as Python, JavaScript, Java, or C#, deep understanding of the cyber kill-chain and MITRE ATT&K frameworks
• Possession of at least one of the industry recognized cyber security certifications (CISSP, SANS GIAC, OSCP) would be a huge benefit

UBS is the world’s largest and the only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors. We have a presence in all major financial centers in more than 50 countries.

We may request you to complete one or more assessments during the application process. Learn more

At UBS, we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs. From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it’s our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we’re more than ourselves. Ready to be part of #teamUBS and make an impact?

UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.

We are open to applications from career returners. Find out more about our program on ubs.com/careercomeback.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.