Location: Remote 95% of the time. Will require travel onsite at least once every 6 weeks (subject to change).
Who are you?Security-cleared Professional: You have the ability to obtain a Public Trust issued by the Department of Homeland Security (DHS).
Education is important to us: You have a Bachelor's Degree with 3 years of experience within an enterprise IT services environment, providing technical support with emphasis on cybersecurity
Experience is important to us:- Demonstrated experience with network and security management tool suites, with an emphasis on SIEM and growing towards SOAR solutions
- Knowledge of deploying, developing, and maintaining SOC oriented services and systems within a hybrid on premise and cloud-oriented enterprise class environment.
- Working knowledge of a variety of security / networking technologies to communicate and collaborate with other engineers
- Ability to learn and understand complex and dynamically changing environments
- Self-starter, able to work independently, and able to manage time effectively
- Working knowledge of cloud platforms such as AWS/Azure
- Ability to communicate effectively with multiple levels of an organization from engineering, operations, and management
- Technologies: Splunk ES, Tenable, CrowdStrike, Lookout, Swimlane, Axonious, Windows and/or Linux admin experience desirable
What you'll do:- Provide support for the administration, maintenance, configuration, patching, upgrades and optimization of security tools, devices, application systems, and servers and sensors within the cybersecurity infrastructure.
- Maintain SIEM applications to collect and aggregate operating systems, IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security-relevant devices
- Support and evolve the interfaces between operations, network, SOC, and operating systems information into the SIEM tool using information from and input from ISSOs; perform asset categorization and prioritization.
- Monitor DHS S&T systems, networks, and applications for malicious activity and utilize security tools and technologies to detect, analyze potential threats, and respond to agency and component level security alerts.
- Analyze cybersecurity systems to identify vulnerabilities and trends. They also analyze threat intelligence and data to identify computer attacks and probes.
- Respond to cybersecurity incidents and provide incident response services.
- Assist in developing play books and long-term security strategies and advise on cybersecurity policies.
- Collaborate with other service areas within S&T to help analyze and solve common cybersecurity concerns and problems.
- Assist in documenting incidents and actions taken by the SOC analyst team
- Prepare, provide, and discuss detailed reports with other teams and management.
What matters to you matters to us.Fusion Technology values its employees and works hard to ensure proper care for them and their families. We desire to compensate employees in a competitive, motivational, fair, and equitable way with other employers in the marketplace. Salary is only one component of employee compensation but an integral part of recruiting and retaining qualified employees. However, at Fusion Technology, we take a comprehensive approach and consider each employee's needs to tailor a compensation plan that provides financial security and peace of mind. Our competitive package includes a best-in-class matching 401K program, a comprehensive healthcare plan through Meritain, a competitive employer contribution to a health savings account, vision and dental plans, life insurance, short- and long-term disability, and personal leave, in addition to paid certifications and training.