$80K - $100K(Ladders Estimates)
Monitor, assess, and respond to information security events in a large diverse enterprise environment.
Correlate security related data across the enterprise.
Perform Security Incident Response Handling and Incident Containment/Recovery.
Assist application owners to understand and implement the security aspects of their applications.
Investigate incidents for Cyber Incident Response Team (CIRT).
Develop content to improve detective capabilities in Security Information and Event Management (SIEM) tool.
Analyze disparate data sources for security incidents.
Respond to network security incidents promptly to mitigate damage or restore service.
Be a champion for process, recommending tools, software development, or infrastructure changes to improve or enhance security.
Lead small to medium sized projects.
Develop and deliver metrics.
Participate in Cyber Incident Response Team (CIRT) rotation.
Bachelors or Associate degree or equivalent experience.
One current form of following certifications preferred: CISSP, CISA, CISM and or GCIH.
Cyber Incident Handling experience.
High-level network troubleshooting ability.
Ability to plan, organize and prioritize tasks to complete independently and within time frame established.
Knowledge and experience with current cyber threats and landscape to Enterprise environments.
In-depth knowledge of security best practices in large-scale environments.
In-depth knowledge of Intrusion Detection systems (Checkpoint, McAfee, ISS, Snort, etc.), Security Information and Event Management (SIEM), Network Windows/Linux forensics techniques, and Vulnerability scanning tools (WebInspect, Nessus, etc.)
In-depth knowledge of Diagnostic tools such as packet capture/decode and WAN probes, Windows and UNIX - Solaris, HP/UX, or Linux operating systems administration.
Knowledge of networking components including routers, hubs, switches, etc., TCP/IP protocols and OSI Seven Layer Mode.
Knowledge of state and Federal regulatory requirements PCI, PII, CPNI requirements.
Strong verbal and written communication skills.
Strong comprehension of incident response.
Knowledge of system security design and network security best practices.
Analytical and organizational skills.
Ability to effectively communicate and work independently and as part of a team.
Valid Through: 2019-11-15