Security Technical Analyst
- Full Time, onsite
- Goahead Solutions
- Hybridfirst week onsite then couple of days a week or as needed., United States of America
Apply on
GoAhead Solutions has a great opportunity for a Security Technical Analyst. This would be a twelve month contract to start out. This would be a hybrid position working on-site as needed.
Job Description:
Security Technical Analyst will lead staff in the implementation and execution of technical aspects of the Company s Enterprise Security Plan. Consultant will continue to be the subject matter expert on security issues/projects so that ESEC team members can increase their security knowledge.
Responsibilities and Duties:
-Proactively identify and assess threats to Company s users, network and data.
-Monitor and respond to reports of malicious activity.
-Respond and investigate intrusions and security events.
-Demonstrate an understanding of Company s threat landscape.
-Perform thorough analysis of attacks and anomalous network behavior.
-Provide summarized and detailed analysis and documentation in support of ESEC.
-Perform proficient forensic analysis using security tools and processes.
-Identify Actionable Intelligence by processing Threat Intelligence (TI).
-Demonstrate ability to identify, contain, eradicate and recover from security incidents.
-Collaborate with Company s business units, partners and individuals to mitigate security threats.
-Advise the CISO and ESEC Team on matters involving organizational, strategic, tactical, and security best practices related to forensics and security incidents management.
-Attend meetings/Represent ESEC as a Senior Lead for all security matters.
-Act as Lead/Co-Lead/Backup on assigned ESEC projects.
-Mentor junior staff colleagues.
-Create Standard Operating Procedures and training documents.
-Other duties, to be assigned as needed.
Technical Knowledge and Skills:
-Minimum of 5+ years of technical experience conducting security incident response and forensic analysis.
-CISSP and CCFP or equivalent certification desired (e.g., CCE, CHFI). Other highly desirable security certifications may be substituted for CISSP (e.g., CISA, CISM, etc.)
-Working experience of obtaining Cyber Threat Intelligence and making the information usable through the security incident process.
-Working experience of applying IOCs to identify threats in current environment and apply information to prevent future vulnerabilities in infrastructure.
-Technical security project management skills.
-Working experience using best practices standards and frameworks: ISO 27001/27002; PCI DSS v4, GLBA; HIPPA/HITECH; NIST 800-53; CIS CONTROLS, NIST CSF; CIS RAM.
Work Experience:
-Hardware: Network Switches, Routers, Load Balancers, Servers, Storage Systems, End-User Systems, Mobile Devices, or other devices that enable the organization to complete its mission.
-Operating Systems: UNIX, LINUX, WINDOWS.
-Network: LAN WAN, Internet, Proxy/Filtering, Firewall, VPN, DMZ
-Network Protocols: TCP/IP, SNMP, SMTP, NTP, DNS, LDAP, NFS, SAMBA, etc.
-Databases: Oracle, SQL, MYSQL.
-Cloud Platforms: IAAS, PAAS, SAAS.
-Security Concepts: Encryption, Hardening, etc.
-Security GRC.
-Forensic Analysis Tools.
-Active Directory.
-Programming Languages are a plus.
-Computer Forensic experience a plus.
-Prior SIEM experience a plus.
-Malware analysis skills a plus.