Job Description

Role: Network Security Monitoring and Incident Response Analyst III

Duration: 12+ Months

Location: Austin, TX 78744 (Onsite 5 days a week)

Experience: 15+ Years

The client work to be accomplished:

Work involves assisting in supervision and service delivery control of the client Cybersecurity Operations tools team comprising of seven (8) staff augmentation contractors. Employee will ensure real-time data, metrics, and correlated incident input to the CSOC Incident Response Team. Works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.

DUTIES

Employee will assist in supervising and managing the client Cybersecurity Operations Tools Team; will work under the management of the client Cybersecurity Officer; will be responsible for administration, maintenance, and resilience of Cybersecurity tools; real-time data, metrics, and correlated incident input to the CSOC Manager for use in daily monitoring and incident response; and support of daily operations and incident response activities. Employee will provide tooling input for end of month and annual reporting requirements as dictated by the client As appropriate, Employee will provide recommendations for improvements in daily operations, resilience, and Cybersecurity operational maturity. Employee will be responsible for planning and management of tooling deployment and operatingmanaging the security tool sets. Employee will be responsible for assisting in managing ongoing agency cybersecurity programs (e.g. Tabletop exercises).

Team members will provide services in the following areas:

• Custom Managed Scanning Services
• Custom Managed Endpoint Protection
• Managed CISCO Secure Network Analytics Service
• Security Information and Event Management (SIEM) administration

Required Skills:

• 8 years of Technical Team Management experience
• 8 years of Deployment and configuration of Network Security monitoring and incident response tools (EDR, Scanners, SIEM, Netflow, etc)
• 8 years of Administration of Network Security Monitoring and Incident Response tools (EDR, Scanners, SIEM, Netflow, etc)
• 8 years of Participation and experience in intrusion detection and incident response activities
• 8 years of Effective, professional business communication and reporting

Preferred Skills:

• 8 years of Experience with the CISCO security suite of tools
• 8 years of Experience with Microsoft EDR tools
• 8 years of Experience with Microsoft Sentinel
• 8 years of Experience with the Tenable suite of tools

Job Tags

Similar Jobs