dwnthehatch
10-32
Information Security - Incident Response Analyst
Description
As our Incident Response Analyst, you will be responsible for the following:
•Monitor intrusion detection systems and create/monitor IDS signatures
•Respond to computer security incidents by collecting, analyzing and preserving digital evidence
•Gather and analyze forensic evidence for security incidents and disciplinary or criminal investigations
•Conduct computer and network forensic investigation functions
•Analyze malware and system forensics to determine level of impact. Conduct network packet analysis using Wireshark, TCPDump, and internal Deep Packet Inspection Tools
•Research, evaluate, and assess emerging cyber security threats, incidents, and vulnerabilities
•Perform vulnerability scans to support vulnerability assessments, risk assessments and security incident closure
•Work closely with the risk team to assess risk and provide recommendations for improving security posture
•Produce reports as required by management
•Other duties as assigned
Qualifications
Clearance requirement:
•Active Secret clearance
Required Skills:
•Bachelors Degree or equivalent experience, plus:
•Four (4) years of combined IT security and incidence response experience
•Incident response / digital forensics experience
•Vulnerability scanning experience
•Windows and Linux (RedHat, CentOS preferred) operating systems (system administration level) experience
•Demonstrated investigation and analytical skills
•Ability to effectively lead meetings and projects
Desired Skills:
•3+ years of experience in information security
•2+ years of experience in incident response
•1+ years of experience in vulnerability scanning
•Apple OSX operating systems (system administration level) experience working with ELK, FTK, Intella, Metasploit and other open source security tools
•Working knowledge of information security issues, trends and leading practices
•Penetration testing experience
•C&A experience
•Working knowledge of security auditing processes
•Ability to identify both tactical and strategic solutions
•Coding/Scripting experience e.g. Perl, VB Script, Python etc.
•Exposure and interest in advanced statistical analysis
•High level critical thinking and strategic planning skills
•Previous firewall experience
•Strong written, verbal, interpersonal skills, emotional intelligence, and a positive attitude to interface effectively with all levels within the organization
•Broad knowledge of IT systems, infrastructure (e.g. network, systems, datacenter and access technologies), business applications, and processes
•A holistic understanding of attack vectors, current threats, and remediation strategies is essential for this role
•Experience with computer/network/digital forensics concepts and procedures, investigations, collections, evidence handling, analyzing and preserving digital evidence and live response techniques
•Ability to occasionally support flexible shifts
•Certifications such as CISSP, GCIA, CEH, GCIH, GCFA, or CSIH
•Top Secret Clearance is preferred; Secret is required
PM me if interested.
Description
As our Incident Response Analyst, you will be responsible for the following:
•Monitor intrusion detection systems and create/monitor IDS signatures
•Respond to computer security incidents by collecting, analyzing and preserving digital evidence
•Gather and analyze forensic evidence for security incidents and disciplinary or criminal investigations
•Conduct computer and network forensic investigation functions
•Analyze malware and system forensics to determine level of impact. Conduct network packet analysis using Wireshark, TCPDump, and internal Deep Packet Inspection Tools
•Research, evaluate, and assess emerging cyber security threats, incidents, and vulnerabilities
•Perform vulnerability scans to support vulnerability assessments, risk assessments and security incident closure
•Work closely with the risk team to assess risk and provide recommendations for improving security posture
•Produce reports as required by management
•Other duties as assigned
Qualifications
Clearance requirement:
•Active Secret clearance
Required Skills:
•Bachelors Degree or equivalent experience, plus:
•Four (4) years of combined IT security and incidence response experience
•Incident response / digital forensics experience
•Vulnerability scanning experience
•Windows and Linux (RedHat, CentOS preferred) operating systems (system administration level) experience
•Demonstrated investigation and analytical skills
•Ability to effectively lead meetings and projects
Desired Skills:
•3+ years of experience in information security
•2+ years of experience in incident response
•1+ years of experience in vulnerability scanning
•Apple OSX operating systems (system administration level) experience working with ELK, FTK, Intella, Metasploit and other open source security tools
•Working knowledge of information security issues, trends and leading practices
•Penetration testing experience
•C&A experience
•Working knowledge of security auditing processes
•Ability to identify both tactical and strategic solutions
•Coding/Scripting experience e.g. Perl, VB Script, Python etc.
•Exposure and interest in advanced statistical analysis
•High level critical thinking and strategic planning skills
•Previous firewall experience
•Strong written, verbal, interpersonal skills, emotional intelligence, and a positive attitude to interface effectively with all levels within the organization
•Broad knowledge of IT systems, infrastructure (e.g. network, systems, datacenter and access technologies), business applications, and processes
•A holistic understanding of attack vectors, current threats, and remediation strategies is essential for this role
•Experience with computer/network/digital forensics concepts and procedures, investigations, collections, evidence handling, analyzing and preserving digital evidence and live response techniques
•Ability to occasionally support flexible shifts
•Certifications such as CISSP, GCIA, CEH, GCIH, GCFA, or CSIH
•Top Secret Clearance is preferred; Secret is required
PM me if interested.
