Primary Duties

• Triage alerts and determine if further investigation or action is required by the customer
• Assist customers with the investigation and response of incidents throughout the incident response process
• Perform investigations of customer requests and be able to provide further contextual information along with recommended actions
• Proactively threat hunt using network and host data within customer environments
• Mentor junior engineers

Required Qualifications

• Ability to obtain Government Suitability Clearance required.
• 3+ years of experience with supporting enterprise EDR solutions, including Carbon Black EDR, , SentinelOne, FireEye HX, McAfee, Tanium,etc.
• 3+ years of experience in working with a Security Operations Center (SOC) environment, leveraging EDR tools, CrowdStrike Falcon (is a plus), to support incident response, vulnerability scanning, threat hunting, network monitoring and log management, and compliance management activities
• Experience with deployment of an EDR solution in a customer environment
• Experience with optimization of EDR solutions, including refinement data produced, development of automated workflows or playbooks, and integration of the EDR data with Enterprise solutions, including SIEM, ITSM, and TIP solutions
• Ability to provide content on deliverables, including written reports and technical documents, SOPs and configuration guides, and training and briefing materials
• Ability to analyze packet captures/data and logs to perform incident response and identify potential compromises to customer networks
• Possesses a solid understanding of the TCP/IP protocol suite, security architecture, and common TTP’s (tactics, techniques, and procedures) used by threat actors
• Experience analyzing both log and packet data in a SIEM (RSA NetWitness, Azure Sentinel, Splunk, etc.)
• Strong understanding of incident response methodologies and reporting
• Experience using ticketing systems for tracking (JIRA, Remedy, ServiceNow, etc.)
• Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers

Preferred Qualifications

• Experience with triaging security events in a SOC environment and leveraging data collected from enterprise security solutions
• Experience with providing support in a Tier I or II IT operations and maintenance role, including ticket work information updates, issue responses, and remediation
• Knowledge of federal information security policies, standards, procedures, directives, frameworks, federal security authorizations, assessment, and risk management processes for enterprise systems
• Ability to integrate cybersecurity data using enterprise or custom tools data aggregation and analysis tools, including Splunk
• Possession of excellent written and verbal communication skills
• Master’s degree
• EDR Vendor Certification - CrowdStrike Falcon (is a plus)
• Minimum of three years of experience performing triage/incident response in enterprise environments
• Minimum of three years of experience performing forensic analysis of logs and packet captures to identify malicious artifacts
• Higher level security certifications (CEH, GCIH, GCFA, GCFE, GCTI, GCIA, GREM, GPEN, GFNA, OCSP)
• Strong research background and an analytical approach, especially with respect to event classification, event correlation, and root cause analysis
• A mentoring/leadership background including mentoring other analysts and orchestrating team efforts for problem solving
• Ability to manage projects to completion both individually and in a group

Job Type: Contract

Salary: $55.00 - $65.00 per hour

Experience level:

• 8 years

Schedule:

• 8 hour shift

Experience:

• Linux: 1 year (Preferred)
• Cybersecurity: 1 year (Preferred)
• Information security: 1 year (Preferred)

Work Location: Remote

Please Note :
chrismaxcer.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, chrismaxcer.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.