Senior Information Systems Security Consultant (McAfee SIEM)
Posted on :
23-11-2022
Employer Active
1 Vacancy
The job posting is outdated and position may be filled
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Req ID : 1766575
Configure custom IT security policies, manage and maintain operational availability of DOH networked devices by using a variety of security applications and systems in cloud or on prem network environments.
This position is for a role that requires candidates to work onsite in a hybrid model.
In addition to the normal background check and compliance items, this candidate will need to pass a State of NJ Fingerprinting background check prior to start.
Experience in the field of Information Systems Security required.
SIEM - Google Chronical
Web Filtering Tool - Zscaler ZIA
Firewall - Firewall rules, subnet, ports
1. Significant Experience with Google Chronical, McAfee SIEM to
(a) Configure and implement rules, data sets, APIs, third party cloud API integration to facilitate ingestion of logs sources like o365, Azure AD, AWS (b) Migrate and implement McAfee SIEM log data sets to Google Chronical (c) Configure IOC, and alerts (d) Conduct searches raw logs, Investigate alerts, assets, domains, users, IPs, files, Google Cloud Threat Intelligence (GCTI). (e) Configure and monitor events using rules, and run rules against historical data (f)Working experience with YARA-L language
2. Experience with Firewall and Firewall rules, IP addressing, subnets, ports and VPN.
(a). Configure and implement firewall rules (b). Audit firewall rules and network segmentation. (c). Verify and Submit firewall rule requests
3. Experience with Web filtering tool specifically with Zscaler (ZIA), and Cisco Umbrella
(a). Implement new web filtering solution Zscaler ZIA (b) Test, verify and implement policies, create groups, grand access to groups.
4. Experience with NextGen Antivirus Crowdstrike to investigate, and remediate incidents, alerts, IOCs, and IOAs.
5. Experience with AD, GPOs, Security groups, Windows Servers, Desktop OS.
6. Experience in the field of Information Systems Security required. Analyst must have working knowledge of relevant FISMA/NIST information security regulations and guidelines.
7. Working knowledge of IT Security Best Practices regarding (a) networks and networking including protocol analysis, anomaly detection, and troubleshooting
This position is for a role that requires candidates to work onsite in a hybrid model.
In addition to the normal background check and compliance items, this candidate will need to pass a State of NJ Fingerprinting background check prior to start.
Experience in the field of Information Systems Security required.
SIEM - Google Chronical
Web Filtering Tool - Zscaler ZIA
Firewall - Firewall rules, subnet, ports
1. Significant Experience with Google Chronical, McAfee SIEM to
(a) Configure and implement rules, data sets, APIs, third party cloud API integration to facilitate ingestion of logs sources like o365, Azure AD, AWS (b) Migrate and implement McAfee SIEM log data sets to Google Chronical (c) Configure IOC, and alerts (d) Conduct searches raw logs, Investigate alerts, assets, domains, users, IPs, files, Google Cloud Threat Intelligence (GCTI). (e) Configure and monitor events using rules, and run rules against historical data (f)Working experience with YARA-L language
2. Experience with Firewall and Firewall rules, IP addressing, subnets, ports and VPN.
(a). Configure and implement firewall rules (b). Audit firewall rules and network segmentation. (c). Verify and Submit firewall rule requests
3. Experience with Web filtering tool specifically with Zscaler (ZIA), and Cisco Umbrella
(a). Implement new web filtering solution Zscaler ZIA (b) Test, verify and implement policies, create groups, grand access to groups.
4. Experience with NextGen Antivirus Crowdstrike to investigate, and remediate incidents, alerts, IOCs, and IOAs.
5. Experience with AD, GPOs, Security groups, Windows Servers, Desktop OS.
6. Experience in the field of Information Systems Security required. Analyst must have working knowledge of relevant FISMA/NIST information security regulations and guidelines.
7. Working knowledge of IT Security Best Practices regarding (a) networks and networking including protocol analysis, anomaly detection, and troubleshooting
Required/Desired Skills
Questions
Employment Type
Full Time
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
