IT Expert - Security
IT Expert (Security)
Description of Duties / Essential Functions
This position exists to help identify, contain, remediate, resolve, and close cyber incidents in a timely and high quality manner. The candidate is expected to be able to function both independently and as part of a team. Specific duties and responsibilities include:
§ Provide direct support to information security operations, malware analysis and network/endpoint threat hunting
§ Perform threat and vulnerability assessments and provide subject matter expertise on appropriate threat mitigation
§ Identify emerging threat actors and track existing actors as their tactics, techniques and procedures (TTP) evolve
§ Identify intrusion activity by leveraging alert data from multiple sensors and systems and determine priority for response
§ Perform in-depth analysis in support of network monitoring and incident response operations
§ Perform live incident response (reactive and proactive incident management) by identifying and remediating malicious applications and infrastructure components
§ Collaborate with other information security and IT team members to develop and implement innovative strategies for monitoring and preventing attacks
§ Develop/monitor basic IDS/IPS rules to identify and/or prevent malicious activity
§ Develop and test new correlation content and use cases using SIEM filters, rules, data monitors, active lists, and session lists
§ Conduct research on emerging information security threats
§ Propose additional components and techniques that could be used to proactively detect and prevent malicious activity
§ Provide other services as a key member of the Information Security Team
§ Adapt well to changing demands and ambiguous situations
§ Develop incident reports
§ Possess excellent written, interpersonal and collaborative skills
This position is physically comfortable; the individual has discretion about walking, standing, etc. There are no major sources of discomfort in a normal office environment.
Minimum Education Requirements
Requires a Bachelor’s degree in Computer Science, Management and Information Systems (MIS), Engineering or a closely related field. Holds multiple system-specific technical certifications, recognized as having mastery of IT security discipline.
A Master’s Degree in Computer Science, Management and Information Systems (MIS), Engineering or a closely related field may be substituted for up to two (2) years of the experience requirement.
Minimum Experience Requirements
At least ten (10) years of progressively responsible IT experience, five (5) years of which must have included progressively specialized IT security responsibilities.
Must be able to pass a criminal background check, obtain and maintain federally mandated security clearances where required.