This 2nd Shift opportunity is a senior individual contributor in the Cyber Defense (CD) Security Operations Center (SOC), responsible for performing security monitoring, intrusion analysis, incident handling, data loss prevention, privileged user monitoring, security incident management, malware detection/eradication, and recognizing hacker/incident response tactics, techniques, and procedures.
The incumbent will have responsibility for one or more of the security systems aligned with their specific function, either directly or indirectly; and will be a technical authority for critical operational decisions having significant impact to the organization with authority extending beyond the team to include both technology and business line areas in security-related decisions.
This role requires the incumbent to stay current with security technology, the threat landscape, and emerging threats. The incumbent will act as a subject matter expert in their specific disciplines and will provide management with recommendations and guidance as needed.
Primary responsibilities include:
Performing ongoing monitoring and threat analysis, analyzing logs, net-flow data, and packet capture
Identifying potential IT security incidents and escalating information to appropriate IR senior staff
Assessing threat and vulnerability information from all sources (both internal and external) and promptly applying applicable mitigation techniques
Developing meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk
Using information from cyber security tools and processes, assessing potential security and business impacts while communicating recommendations to management
Representing Cyber Defense as needed on security-related or risk-related initiatives or working groups where technical skills and security expertise are required.
Proactively protecting, monitoring, investigating and resolving threats to secure user environment and company assets
Decision-maker for daily operational decisions having significant impact to the organization
Providing direction and guidance to more junior staff on a team of security and technical professionals
This role is a 2nd shift, Wednesday through Saturday opportunity in our Security Operation Center with the hours of 3:00PM 1:00AM.
3 or more years of security industry experience preferably in a SOC environment
Experience with the following highly desirable:
Security Information and Event Management Tools (QRadar, Archsight, etc.)
Intrusion Prevention Tools
Database Security Tools (Guardium)
Data Loss Prevention Tools (Symantec, Websense, etc.)
Firewalls (Cisco, Palo Alto, Check Point etc.)
Application Security Tools
Cyber Security Incident Response
Network Intrusion Detection Systems (SourceFire, McAfee, etc.)
Host Intrusion Detection Systems
Security Analytics (Solera, NetWitness etc.)
Demonstrated spoken and written communication skills with the ability to present technical concepts to non-technical audiences
Experience adapting and demonstrating flexibility while working in a dynamic environment
Education, Certifications and/or Other Professional Credentials:
Bachelor's Degree or equivalent combination of experience
Hours & Work Schedule
Hours per Week: 40
Work Schedule: Wednesday through Saturday 3:00PM - 1:00AM
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.