Description: JOB TITLE: Senior Associate, IT Security (IUP2)
External Title: Security Operations Center Analyst
LOCATION: Melbourne, FL. Pay Rate$45/hr on w2 JOB DESCRIPTION: The client is searching for talented Information Technology (IT) Security professional to join the Security Operations Team as a Security Analyst. This is an operations center staff position that supports the Enterprise Security Operations Center (SOC). This position is ONSITE in Melbourne, FL. Applicants must be willing to work rotating shift periods that include evening and weekend rotations. Specific duties and responsibilities include: • Responsible for Tier 1 security configuration hardening, incident detection/ investigation and reporting to management and customer security contacts
• Monitor security events to identify anomalies for possible incidents within the network
• Manages Security Information and Event Management (SIEM) infrastructure and applications, including workflow management, threat hunting assignments, threat intelligence ingests, rule/alert creation and operational maintenance
• Use developed skills, tools, and external resources to validate security-related events to determine validity, exposure or false positive conditions
• Ability to retrieve, correlate and analyze event history, configuration files and system logs to assess the presence of anomalous events
• Produce time-critical, technical reports to management outlining incident and potential mitigation
• Communicate with SOC and Network Operations Center (NOC) staff about potential incidents, indicators and/or warnings
• Troubleshoot and effect restoration of service-impacting issues affecting customer VPN performance
• Handle trouble calls from customers and internal network users
• Apply baseline security configurations to network equipment to harden or update to meet approved requirement baselines.
• Ability to provide on-call support on a rotational basis as needed on weeknights and weekends.
• Ability to work in a fast-paced operational environment to maintain availability and resiliency of network security services to customers. QUALIFICATIONS:
• BS/BA (or equivalent) degree in IT Security or related field, and a minimum of 2 years related experience or 2 years post-Secondary/ Associates Degree and a minimum of 4 years related experience, and including:
o Minimum of (1) years' experience in the Information Security field.
o Minimum of (1) years' experience in the network engineering fields (Firewalls, Routers, Switches, VPN).
• Ability to obtain FAA Public Trust security clearance PREFERRED TECHNICAL SKILLS:
• Understanding of various Operating Systems (e.g Windows, Linux, etc.)
• Understanding of system logs and be familiar with log analysis
• Understanding of predominant cyber-attack vectors (Buffer Overflow, Phishing, etc.)
• Information Security Operations Center analyst experience
• CompTIA Security+ Certification or equivalent certification preferred
• Understanding of system vulnerabilities and exploitation
• Understanding of vulnerability mitigation
• Knowledge of SIEM functions threat hunting, correlation of events, dashboard creation, metrics development, and creating alerts based on threat intelligence and other Indictors of Compromise (IOC)s
• Strong written and oral communication skills, be self-motivated and a self-starter, maintain a curiosity and desire to learn, and be able to work well in a team environment
• Ability to prioritize vulnerability mitigation efforts based on risk assessments
External Title: Security Operations Center Analyst
LOCATION: Melbourne, FL. Pay Rate$45/hr on w2 JOB DESCRIPTION: The client is searching for talented Information Technology (IT) Security professional to join the Security Operations Team as a Security Analyst. This is an operations center staff position that supports the Enterprise Security Operations Center (SOC). This position is ONSITE in Melbourne, FL. Applicants must be willing to work rotating shift periods that include evening and weekend rotations. Specific duties and responsibilities include: • Responsible for Tier 1 security configuration hardening, incident detection/ investigation and reporting to management and customer security contacts
• Monitor security events to identify anomalies for possible incidents within the network
• Manages Security Information and Event Management (SIEM) infrastructure and applications, including workflow management, threat hunting assignments, threat intelligence ingests, rule/alert creation and operational maintenance
• Use developed skills, tools, and external resources to validate security-related events to determine validity, exposure or false positive conditions
• Ability to retrieve, correlate and analyze event history, configuration files and system logs to assess the presence of anomalous events
• Produce time-critical, technical reports to management outlining incident and potential mitigation
• Communicate with SOC and Network Operations Center (NOC) staff about potential incidents, indicators and/or warnings
• Troubleshoot and effect restoration of service-impacting issues affecting customer VPN performance
• Handle trouble calls from customers and internal network users
• Apply baseline security configurations to network equipment to harden or update to meet approved requirement baselines.
• Ability to provide on-call support on a rotational basis as needed on weeknights and weekends.
• Ability to work in a fast-paced operational environment to maintain availability and resiliency of network security services to customers. QUALIFICATIONS:
• BS/BA (or equivalent) degree in IT Security or related field, and a minimum of 2 years related experience or 2 years post-Secondary/ Associates Degree and a minimum of 4 years related experience, and including:
o Minimum of (1) years' experience in the Information Security field.
o Minimum of (1) years' experience in the network engineering fields (Firewalls, Routers, Switches, VPN).
• Ability to obtain FAA Public Trust security clearance PREFERRED TECHNICAL SKILLS:
• Understanding of various Operating Systems (e.g Windows, Linux, etc.)
• Understanding of system logs and be familiar with log analysis
• Understanding of predominant cyber-attack vectors (Buffer Overflow, Phishing, etc.)
• Information Security Operations Center analyst experience
• CompTIA Security+ Certification or equivalent certification preferred
• Understanding of system vulnerabilities and exploitation
• Understanding of vulnerability mitigation
• Knowledge of SIEM functions threat hunting, correlation of events, dashboard creation, metrics development, and creating alerts based on threat intelligence and other Indictors of Compromise (IOC)s
• Strong written and oral communication skills, be self-motivated and a self-starter, maintain a curiosity and desire to learn, and be able to work well in a team environment
• Ability to prioritize vulnerability mitigation efforts based on risk assessments