ITPROUSPSSC-1 Security Architect - Consultant
ITPROUSPSSC-1 Security Architect - Consultant
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
DAILY DUTIES / RESPONSIBILITIES:
The Cyber SOC Experienced Analyst will ensure the effective operations of the SOC through the following:
Technical
Proactively search for active intrusions in the SCDOR environment recognizing potential successful and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
Work closely with escalation points to close out complex investigation
Conducting holistic investigative analysis and rating the risk associated with observed activity
Review investigation escalations from SOC Analysts to ensure accurate analysis and provide advice/mentorship
Refine and develop dashboards queries and reports to continuously improve security situational awareness
Maintain SOC documentation procedures processes and hardware and software inventory detail
Demonstrate a sound understanding of security technologies and their function within a networked environment
Adhere to corporate information security guidelines and promote information security among coworkers
Develop reports (manual and automated) to support the development collection and reporting of Quality Assurance and Performance metrics.
Performs other duties and special projects as assigned.
NonTechnical
Demonstrate highly technical thinking and knowledge inspire confidence and credibility within a team
Time management on multiple investigations prioritizing
Appetite to develop an understanding of most investigations cyber threats and computer forensics.
Taking control of highpressure situations and the attention to detail to precisely find the source
A good team ethos drive and be a selfstarter.
The ability to work unsupervised and under pressure
Excellent verbal and written communication skills
Provide feedback to team regarding product issues enhancements and new features.
Ability to ask pertinent questions of others.
Proactively seek to identify communicate and implement process related improvements.
Effectively manage multiple tasks and activities concurrently and able to provide periodic status updates to key stakeholders
Collaborate extensively with peers and management to resolve client issues while actively contributing to a growing knowledge network that improves the effectiveness of our team and the information available to our clients.
Prioritize numerous issues of varying severity and effectively manage the resolution of all issues within accepted service levels. This includes ownership of the data entered into the Helpdesk system and appropriately updating both client and appropriate employees of status of all issues on a timely basis.
Good customer skills be attentive to detail and responsive to customer tickets
Performs other duties and special projects as assigned.
Requirements
REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
CURRENTLY EMPLOYED AS A SOC 2 or SOC 3 ANALYST
CURRENTLY USING SOAR AND SIEM TECHNOLOGY
RISK AND VULNERABILITY ASSESSMENTS
INCIDENT MANAGEMENT
SECURITY INFORMATION EVENT MANAGEMENT (SIEM) TUNING OF OFFENSES ALERTS
EXCELLENT WRITTEN AND VERBAL COMMUNICATIONS SKILLS
THREAT HUNTING
ABILITY TO USE INDUSTRY LEADING SECURITY TOOLS
DEMONSTRATE KNOWLEDGE OF INFORMATION SECURITY PRINCIPLES AND PRACTICES
KNOWLEDGE OF COMMON RISKS AND THREATS FOR NETWORKING DATABASES SYSTEMS CLOUD AND WEB OPERATIONS
PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
IRS Safeguard Computer Security Evaluation Matrix (SCSEM)
Forensics
Experience in projects involving PCI/NIST security implementations and/or audits.
Windows Security including Cloud
Wireshark
SIEM tuning of log sources
SIEM systems development/configuration
Penetration Testing
Tenable Security Center Administration
OWASP Top 10 remediation techniques
REQUIRED EDUCATION/CERTIFICATIONS:
Seven (7) years of experience in security information technology systems or related area with a minimum of 5 years utilizing SIEM or SOAR technology.
PREFERRED EDUCATION/CERTIFICATIONS:
.Preferred Industry Certifications in field.
Cloud Certifications
Microsoft Certifications Azure Security related
GCIH GCTI GCCC GCWN GSEC CEH GCIA GCFA GCFE GREM CCIM CFCE CCE CIFI CHFI CCNA CCNA Cyber Ops
IBM Certified Associate Analyst Security QRadar SIEM
Benefits
REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE): CURRENTLY EMPLOYED AS A SOC 2 or SOC 3 ANALYST CURRENTLY USING SOAR AND SIEM TECHNOLOGY RISK AND VULNERABILITY ASSESSMENTS INCIDENT MANAGEMENT SECURITY INFORMATION EVENT MANAGEMENT (SIEM) TUNING OF OFFENSES, ALERTS EXCELLENT WRITTEN AND VERBAL COMMUNICATIONS SKILLS THREAT HUNTING ABILITY TO USE INDUSTRY LEADING SECURITY TOOLS DEMONSTRATE KNOWLEDGE OF INFORMATION SECURITY PRINCIPLES AND PRACTICES KNOWLEDGE OF COMMON RISKS AND THREATS FOR NETWORKING, DATABASES, SYSTEMS, CLOUD AND WEB OPERATIONS
Education
REQUIRED EDUCATION/CERTIFICATIONS: Seven (7) years of experience in security information technology systems or related area, with a minimum of 5 years utilizing SIEM or SOAR technology. PREFERRED EDUCATION/CERTIFICATIONS: .Preferred Industry Certifications in field. Cloud Certifications Microsoft Certifications, Azure, Security related GCIH, GCTI, GCCC, GCWN, GSEC, CEH, GCIA, GCFA, GCFE, GREM, CCIM, CFCE, CCE, CIFI, CHFI, CCNA, CCNA Cyber Ops IBM Certified Associate Analyst - Security
Employment Type
Full Time
