Truesec Incident Response Team is a virtual team consisting of members from various specialized departments working closely together and sharing knowledge. See below for information about those departments and which open positions are available or click "Connect with us!" to notify us about your availability and get mailed when we publish a new open position.
Do you want to work with IT and Security where it really matters? Do you want to help fight cyber-crime and help companies and organizations that are affected so badly that the whole business is at risk? Simply, do you like to be the ultimate combination of a firefighter, secret agent and, superhero all at the same time? Then this is the right place!
We help mid- and large-sized corporations, organizations, and governments protect their most sensitive information by testing and building secure IT infrastructure environments. Regardless if it’s an Endpoint Management, Web Application, Client Deployment solution, an identity solution or building solutions in public clouds or anything else we do, our mindset is always set to make it secure and protect the content. Anyone can build infrastructure, but we build it secure!
We have an incredibly strong team where everyone helps each other, regardless of what hour of the day or what the problem is, there are always people available to help. That’s our core strength, and together with the passion for IT and the will to help people is what makes us unique.
What about the firefighter, secret agent, and superhero? That’s the second part of our passion! Whenever an IT environment is compromised, someone notices that there are unwelcome guests in the network, sensitive data has been leaked or encrypted. That’s when we get a call! And just like a fire brigade is heading to the fire, we get on the first available airplane and head to the customer to help them onsite to contain the situation and start the forensic to get to know how they got in, what systems they have touched and what data might have been extracted . In parallel another team is rebuilding the infrastructure and rescuing as much data as possible. Calling us firefighters is something multiple customers have done, as they felt the same relief when we came onsite as you may when the fire brigade comes. Or as one person said; "as soon as I saw it said Truesec on your shirt I knew this is someone who knows his stuff".
We are generally not allowed to talk about our customers, but we have been involved in almost all big incidents in Sweden that you may or may not have heard about in the news. What we do is done mostly in secret, just like a secret agent works. Think about 007 but without the gun, fighting, casinos, girls, drinks… on the other hand, it’s not very much 007 at all, but still secret and nothing we can talk about. During the incidents we work long days, nights and weekends - knowing that every hour costs the affected company millions of USD, and they may not survive if it takes too long.
The skillset needed is almost superhuman, like a superhero, we need to know a lot about everything, though we also have specialized areas. The type of tasks we carry out during an incident is forensics where we find out how the attacker got it, what they did to the environment, what servers and information they have touched or extracted, reverse engineer the code they have used, and create clean-up processes. And at the same time we are building for example a new Active Directory with tiered administration, security baseline polices, MFA, Azure Sync, a lot of Office 365 settings and configuration, Azure AD security implementations, a fully automated client deployment solution, monitoring, SQL Servers, Virtualization, Networking, Wifi, Printers and a lot of other things needed for an enterprise environment to work. It’s a small team of the most advanced Swiss army knives that have to be able to operate, recover or build a new IT environment from scratch in no time - using the latest technology and security features, all done under a lot of stress and pressure. It sounds horrible, but we love it, and it’s what makes us so good at what we do.
Seeing all these incidents and the problems in different IT environments gives us a unique understanding of how to build solutions to not end up in a situation like that in the first place. We love to share our knowledge with the community, and thus we are often speakers at various big events for audiences of hundreds to thousands of listeners.
But to set things into perspective a bit and set the right expectations, doing proactive and scheduled assignments is by far the biggest part of our job. The incidents are mostly to spice things up.
If you would like to join our team, we offer you all the above. The possibility to work with things that matter. To be part of a team of a fire brigade of super-secret superheroes who all work together as a team helping each other help others! You will never have a boring day or a day that feels like the day before or feel like you know everything. In fact, there is a big risk that you will most likely feel that you never know enough and that there is always too much new stuff to learn. But if computers and security is your passion, that won’t be a problem!
We think that you are the person who always sees solutions where others see problems. That you are the person everyone else turns to when they don’t know and that you at times feel there is no one to turn to, to ask for help when you need some. And you are the one who wouldn’t mind being either a firefighter, a superhero, a secret agent? Or why choose, be all of the above!
If not us – then who?
Read more about the departments from where we pick members to the virtual Incident Response Team.
50 N Laura St
32202 Jacksonville Directions
230 32 Stockholm Directions
Career site by Teamtailor