Tag Archives: SIEM

Senior Advanced Splunk IT Specialist

Check out how I am able to get all these offers: https://securitycompliance.thinkific.com

More on that #splunk job: Sr Advanced Splunk / IT Security Specialist https://careers-gdms.icims.com/jobs/35104/job

POC: quan.nguyen@gd-ms.com 443-755-8136 (O)

Bachelor’s degree in a related specialized area or equivalent is required plus a minimum of 8 years of relevant experience; or Master’s degree plus a minimum of 6 years of relevant experience.

Knowledge Skills and Abilities: Senior Splunk Administrator Advanced knowledge of backend operating systems to implement, maintain, configure, and remediate issues (UNIX/Linux/Windows) Knowledge of operating systems and networking. Understanding of SIEM & logging fundamentals. Understanding of SOC Monitor and Response fundamentals. Experience in any type of SIEM – Splunk, Arcsight, Log Rhythm, etc. Experience with implementation of SIEM products and tools. Understanding of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix Knowledge of applications, databases, middleware to address security threats against the same. Proficient in preparation of reports, dashboards and documentation Excellent communication and leadership skills Ability to handle high pressure situations with key stakeholders Good Analytical skills, problem solving and Interpersonal skills Working knowledge and experience with MS office with proficiency in Excel Preferred degree types and experience: The leading candidate will have a Bachelor’s Degree in Computer Science, a related field, or equivalent experience. with a minimum of 5 years of experience in a SOC, or an Associates Degree in Computer Science, Information Systems, Cyber Security, or related discipline with a minimum of 7 years of experience in a SOC. Strong candidates will have previous experience working with users; possess a talent for problem-solving as well as organization and time management skills.

Desired Certifications: CISSP, Network +, Security + (or other applicable certifications)

information assurance engineer maryland Aberdeen

check me out on:
https://securitycompliance.thinkific.com

the Job:
Job Title: Information Assurance Engineer
Location: Aberdeen, MD
Position Type: Full Time

Clearance: Minimum Interim Secret

Must Have IAT Level 3 Certification.

Job Description:
Provides security engineering designs and implementation in all aspects of Information Assurance and Information Security (InfoSec) Engineering.
Assesses and mitigates system security threats/risks throughout the program life cycle; validates system security requirements definition and analysis; establishes system security designs; implements security designs in hardware, software, data, and procedures;
verifies security requirements; performs system certification and accreditation planning and testing and liaison activities, and supports secure systems operations and maintenance.
Mandatory Skills:
Demonstrated experience performing IA activities in support of software and system requirements, design, development, testing and sustainment
Experience with employment of IA requirements, policies, and processes to include authorization and accreditation as part of the RMF process
Experience with risk and vulnerability assessments and mitigation
Demonstrated ability to provide guidance on Intelligence Community (IC) Cyber/IA regulations and requirements to senior customers, senior LM leaders, and the program engineering staff
Experience with Security Information and Event Management (SIEM) correlation tools, Scanning (Nessus), and Host Based
Security System (HBSS)
Please provide the following information
Rate Expectation:
Full Name:
Contact No:
Alternate contact (if any):
Email address:
Current Location:
Relocation:
Availability:
Visa status

Kindly share your detailed resume at zoeyw@etalentnetwork.com

If you are qualified and interested in making a change or know of a friend who might have the required qualifications, please call me ASAP at (877) 733-3555 Ext.267, even if we have spoken recently about a different position. If you do respond via e-mail please include a daytime phone number so I can reach you. In considering candidates, time is of the essence, so please respond ASAP. Thank you.

Sincerely yours,
ZoeyWest
E TalentNetwork

Home


8251 Greensboro Drive, Suite 250
McLeanVA
zoeyw@etalentnetwork.com
(877) 733-3555 Ext.267

Senior Advanced Splunk IT Specialist

Check out how I am able to get all these offers:
https://securitycompliance.thinkific.com

More on that #splunk job:
Sr Advanced Splunk / IT Security Specialist
https://careers-gd-ais.icims.com/jobs…
POC:
quan.nguyen@gd-ms.com
443-755-8136 (O)

Bachelor’s degree in a related specialized area or equivalent is required plus a minimum of 8 years of relevant experience; or Master’s degree plus a minimum of 6 years of relevant experience.
Knowledge Skills and Abilities:
Senior Splunk Administrator
Advanced knowledge of backend operating systems to implement, maintain, configure, and remediate issues (UNIX/Linux/Windows)
Knowledge of operating systems and networking.
Understanding of SIEM & logging fundamentals.
Understanding of SOC Monitor and Response fundamentals.
Experience in any type of SIEM – Splunk, Arcsight, Log Rhythm, etc.
Experience with implementation of SIEM products and tools.
Understanding of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix
Knowledge of applications, databases, middleware to address security threats against the same.
Proficient in preparation of reports, dashboards and documentation
Excellent communication and leadership skills
Ability to handle high pressure situations with key stakeholders
Good Analytical skills, problem solving and Interpersonal skills
Working knowledge and experience with MS office with proficiency in Excel

Preferred degree types and experience:

The leading candidate will have a Bachelor’s Degree in Computer Science, a related field, or equivalent experience. with a minimum of 5 years of experience in a SOC, or an Associates Degree in Computer Science, Information Systems, Cyber Security, or related discipline with a minimum of 7 years of experience in a SOC. Strong candidates will have previous experience working with users; possess a talent for problem-solving as well as organization and time management skills.

Security Consultant Atlanta GA

Excellent Job Opportunity -Sr. Security Consultant Atlanta GA

Job Title: Sr. Security Consultant
Location: Atlanta GA
Type : DIRECT HIRE
Shift: Wed Sat (11am 10pm EST)

MAJOR JOB RESPONSIBILITIES:
·         Monitor incoming event queues for potential security incidents
·         Identify and act on anomalous network activity.
·         Perform hunting for malicious network activity.
·         Perform initial investigation and triage for potential security incidents.
·         Provide accurate & priority driven analysis on cyber activity/threats.
·         Perform payload analysis of packets.
·         Detonate malware to assist with threat research.
·         Resolve or coordinate the resolution (escalate) of cyber security events.
·         Create, manage, and dispatch incident tickets.
·         Monitor external event sources for security intelligence and actionable incidents.
·         Maintain shift logs with relevant activity.
·         Document investigation results, ensuring relevant details are passed to senior analysts and stakeholders.
·         Participate in root cause analysis or lessons learned sessions.
·         Write technical articles for knowledge sharing.
·         Establish and maintain excellent working relationships/partnerships with the cyber security and infrastructure support teams throughout the Information Technology organization, as well as business unit operation centers.
·         Must comply with any regulatory requirements.
JOB REQUIREMENTS:
·         A formal education in Computer Science or a related field; or equivalent experience in IT Security related roles is required.
·         Experience with database monitoring security products like IBM Guardium preferred.
·         Fundamental knowledge of IT core infrastructure and cyber security components//devices preferred.
·         Minimum 1 year experience with TCP/IP Networking and knowledge of the OSI model preferred.
·         Minimum 1 year experience with OS management and Network Devices preferred.
·         Minimum 1 year experience with Intrusion Detection/Prevention Systems preferred.
·         Minimum 1 year experience with Antivirus Systems preferred.
·         Minimum 1 year experience monitoring threats via a SIEM console preferred.
·         1+ years performing analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs, or intrusion prevention logs.
·         Formal IT Security/Network Certification such as CompTIA Security +, Cisco CCNA, SANS GIAC Certified Intrusion Analyst (GCIA), InfoSphere Guardium preferred.
·         Experience with packet analysis (Wireshark) and Malware analysis a plus.
·         Experience working in a Security Operations Center environment is a plus.
·         Client ArcSight experience is a plus.

Thanks & Regards,

Sam Sharma
Tech Providers, Inc.
Phone: 404-594-5767
sam@techproviders.com
www.techproviders.com

Job Opening In COLUMBIA, SC

Position Title:                    Linux Administrator
Position Id:                         6406-1
Duration:                             5 Months
Work Location:                 COLUMBIA, SC 29210
SCOPE OF THE PROJECT:
SOC SECURITY AND LINUX SUPPORT ENGINEER
Support the Division of Information Security (DIS) Security Operations Center (SOC) daily operations with installation, configuration, administration, monitoring and troubleshooting security sensors, log sources, and supporting systems.DAILY DUTIES / RESPONSIBILITIES:
MANAGE AND ADMINISTER A LARGE NUMBER OF LINUX SERVERS AND OPEN-SOURCE SOFTWARE PACKAGES.
MANAGE OPEN-SOURCE PATCH MANAGEMENT AND STATUS MONITORING SYSTEMS.INSTALL AND CONFIGURE SECURITY SENSORS COMPRISED OF OPEN-SOURCE CENTOS LINUX PLATFORMS AS WELL AS IBM/QRADAR FLOW COLLECTOR AND EVENT COLLECTOR APPLIANCES.
WORK WITH STATE ENTITIES TO INTEGRATE NEW LOG SOURCES INTO SOC MONITORING AS WELL AS MAINATIN AND MONITOR EXISTING LOG SOURCES.

REQUIRED EDUCATION/CERTIFICATIONS:
Bachelor’s degree, or 4 years of experience in Linux system administration.

Category
Name
Last Used
Last Used by Candidate (Year)
Experience
Candidate Exp. (in years)
Network Security
information security principles and practices
Within 6 Months
2 – 4 Years
Network Security
IT Security
Within 6 Months
2 – 4 Years
Network Security
Security Information Event Management (SIEM) systems development / configuration
Within 6 Months
2 – 4 Years
Networking & Directories
Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures.
Currently Using
4 – 6 Years
Networking & Directories
Information Security
Within 6 Months
2 – 4 Years
Operating Systems/APIs
Linux
Currently Using
4 – 6 Years
Programming Languages
BASH SCRIPTING
Within 6 Months
2 – 4 Years
Programming Languages
Perl
Within 6 Months
2 – 4 Years
Programming Languages
Python
Within 6 Months
2 – 4 Years
Programming Languages
Relevant programming languages and scripting tools.
Within 6 Months
2 – 4 Years
Protocols
Knowledge of networking protocols, including TCP/IP, HTTP, NTP, DNS, MLLP, NDM
Currently Using
4 – 6 Years
Protocols
TCP/IP
Currently Using
4 – 6 Years
Specialties
Experience in developing and maintaining documentation for policies, procedures, and best practices
Within 1 Year
2 – 4 Years
REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
  • Expert level ability to administer Linux and open-source systems.
  • Skilled in scripting languages such as Bash, Perl or Python.
  • Understanding of computer and network operating system fundamentals on diverse platforms (e.g. Unix, Linux, Windows, Mac/OS, Cisco, Juniper, etc.)
  • Knowledge of network protocols and ability to perform TCP/IP packet analysis
  • Excellent written and oral communication skills
    PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
    Cyber awareness and understanding.
    Knowledge of information security topics related to computers, networks, and software
    Experience with Security Information Event Management (SIEM) and Intrusion Detection Systems (IDS) configuration, tuning, and operation.
    Understanding of information security event correlation.
    Experience with authoring of policies, standards, or procedures.