Network Security Monitoring and Incident Response Analyst III
Share
Job Location:
Austin, TX - USA
Monthly Salary:
Not Disclosed
Posted on:
9 hours ago
Vacancies:
1 Vacancy
Job Summary
Role: Network Security Monitoring and Incident Response Analyst III
Duration: 12 Months
Location: Austin TX 78744 (Onsite 5 days a week)
Experience: 15 Years
The client work to be accomplished:
Work involves assisting in supervision and service delivery control of the client Cybersecurity Operations tools team comprising of seven (8) staff augmentation contractors. Employee will ensure real-time data metrics and correlated incident input to the CSOC Incident Response Team. Works under minimal supervision with extensive latitude for the use of initiative and independent judgment.
DUTIES
Employee will assist in supervising and managing the client Cybersecurity Operations Tools Team; will work under the management of the client Cybersecurity Officer; will be responsible for administration maintenance and resilience of Cybersecurity tools; real-time data metrics and correlated incident input to the CSOC Manager for use in daily monitoring and incident response; and support of daily operations and incident response activities. Employee will provide tooling input for end of month and annual reporting requirements as dictated by the client As appropriate Employee will provide recommendations for improvements in daily operations resilience and Cybersecurity operational maturity. Employee will be responsible for planning and management of tooling deployment and operatingmanaging the security tool sets. Employee will be responsible for assisting in managing ongoing agency cybersecurity programs (e.g. Tabletop exercises).
Team members will provide services in the following areas:
Custom Managed Scanning Services
Custom Managed Endpoint Protection
Managed CISCO Secure Network Analytics Service
Security Information and Event Management (SIEM) administration
Required Skills:
8 years of Technical Team Management experience
8 years of Deployment and configuration of Network Security monitoring and incident response tools (EDR Scanners SIEM Netflow etc)
8 years of Administration of Network Security Monitoring and Incident Response tools (EDR Scanners SIEM Netflow etc)
8 years of Participation and experience in intrusion detection and incident response activities
8 years of Effective professional business communication and reporting
Preferred Skills:
8 years of Experience with the CISCO security suite of tools
8 years of Experience with Microsoft EDR tools
8 years of Experience with Microsoft Sentinel
8 years of Experience with the Tenable suite of tools
Key Skills
- IDS
- Network Support
- Tcp/IP
- LAN
- Computer Networking
- Windows
- TCP
- Perl
- Telecommunication
- Operating Systems
- Juniper
- Dns
