Review audit data and network traffic data for irregularities or other indications of real or potential security violations
· Understanding of Cloud architecture and security practices to include knowledge of modern threat vectors
· Familiarity with Endpoint Detection Response tools E.G. Crowdstrike, Tanium, Signature based detection software
· Correlate and analyze security data and events from alert and traffic flow
· systems
· Identify potential advanced persistent and coordinated threats across
multiple platforms
· Perform tuning and optimization tasks to include sensor rule review and
· log aggregation/visibility
· Perform reviews of implemented cybersecurity defense IDS/IPS rules,
exceptions, and log availability and content
· Perform reviews of aggregated log data to identify missing required
· sources; ensuring log data format IAW logging standards
· Develop/enhance existing intrusion detection analytics, dashboards, and
signatures to remain commensurate with evolving cyber threat
· Investigate all security related events and incidents involving assigned
information systems
· Report identified security incidents through approved reporting process
· Review and share significant activity reports and tippers
· Perform incident response based on security events identified
· Develop and deploy countermeasures in response to cybersecurity
incidents IAW Incident Response Plan
· Analyze and identify root cause and lessons learned from security
· incidents; document formal after-action reports (AAR)
· Provide recommendations related to tactical response actions, such as
· updating signatures and heuristics
· Develop and maintain security analysis scripts and analytic displays
Preferred knowledge and experience with the following:
· NIST and DoD security policies
· Cloud Security best practices
· Securing virtualization/cloud infrastructure concepts, technologies and
· services
· Microsoft server and workstation, Unix, and Red Hat Linux Enterprise OS
· security configurations
· Basic forensic requirements and processes
Secret with Top Secret eligibility
3 yrs experience
One or more approved DoD 8570 baseline certifications for:
IAT II and CSSP Analyst.
Link to approved certifications:
...Job Title: Virtual Front Desk Receptionist Company: EcoWay Voyagers Location: Remote Job Description: As a Virtual Front Desk Receptionist at EcoWay Voyagers, you'll be the welcoming face and voice of our company, providing exceptional customer service and...
Position: Virtual Executive Assistant / Project Manager We are excited to announce an opportunity for an experienced Virtual Executive Assistant... ..., web design, social media, strategy, and more. This is a remote, employee position, not a contractor role, with an expected...
...Pay also includes 2-3 Bar Shifts **Overview:** We are seeking a skilled and dynamic Bar Manager to join our team. The ideal candidate will oversee the daily operations of our bar, ensuring exceptional customer service and a memorable experience for patrons. **Duties:...
...If you are a Forensic Accounting Manager with experience, please read on! Job Title: Forensic Accounting Manager Location: San Francisco , CA, US(Hybrid) Salary: $130K -$200K (salary depends on experience) + Bonus Requirements: - 5+ years relevant experience...
...achieve personal & professional growth.More about the Position:Professional House Cleaners will be traveling to our customer's homes and provide a variety of cleaning services. You will receive mileage reimbursement, paid training, all of your supplies and...