| On-Site Lead Security Analyst (CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA) at Tallahassee, Florida, USA |
| Email: [email protected] |
| Title: On-Site Lead Security Analyst (CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA) Location: Tallahassee, FL Length: Long Term Travel required: none Telecommute: no Skills: "Security Analyst"; security administration; vulnerability scanners, sniffers, port scanners, intercept proxies, log parsers; COTS Packages; "endpoint detection and response (EDR) platforms" "security information and event management (SIEM) solutions"; firewalls, port scanners, intercept proxies, log parsers, IDS/IPS solutions; systems analysis/Admin, Digital forensics, networking, web filters, web application vulnerability assessments, cyber security threats, incidents, and mitigations and responses; "creating policy, procedure, and working documents"; NIST Cybersecurity Framework; "MITRE ATT&CK framework"; artificial intelligence in attack detection, analysis, and response processes; creating automated processes; IT security related to application development and code reviews; PowerShell, Python; OSINT; CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA; MS OFFICE, Documentation, Govt Description: Please DO NOT Apply unless YOU: 1) Are available to Start in June/July 2024 and work 100% on-site from day one. 2) have all the Required skill set and have worked as a "Lead Security Analyst (CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA)" in a large & Complex IT Environment. Prefer Public Sector Environment 3) can meet the min required experience At least 11-12+ years of experience using information security tools to identify vulnerabilities in custom application code, commercial software, system configurations, and networks such as vulnerability scanners, endpoint detection and response (EDR) platforms, security information and event management (SIEM) solutions, firewalls, port scanners, intercept proxies, log parsers, IDS/IPS solutions etc. At least 11-12+ years of combined IT, network, and security work experience with a broad range of exposure such as systems analysis, digital forensics, networking, web filters, web application vulnerability assessments, application development, database design, and/or system administration. Experience in working with third parties to coordinate, monitor, respond to and coordinate cybersecurity threats, incidents, mitigations, and response cycles. Experience creating, modifying, and analyzing scripts such as PowerShell and Python. Experience creating policy, procedure, and working documents at a high level of proficiency. Ability to communicate technical information to broad audiences verbally and in writing. Ability to establish and maintain effective working relationships with cross functional teams. Experience working independently and as a project team member in security administration. Ability to contribute to the capability development and team rapport of the Departments Security Operations Center. Experience working in a NIST Cybersecurity Framework aligned security program. Hold active information security certifications such as: CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA etc. Experience in IT security related to application development and code reviews. Experience as a project team leader in security administration. Experience creating automated processes. Experience leveraging artificial intelligence in attack detection, analysis, and response processes. Knowledge of the MITRE ATT&CK framework. Education/Certifications All Consultants must have earned a bachelors degree in Computer Science, Management Information Systems (MIS), or other technology related field or equivalent work experience of one (1) year relevant experience for each year of education required. Scope of Work Required consultant experience provided by Contractor, shall include: At least 11-12+ years of experience using information security tools to identify vulnerabilities in custom application code, commercial software, system configurations, and networks such as vulnerability scanners, endpoint detection and response (EDR) platforms, security information and event management (SIEM) solutions, firewalls, port scanners, intercept proxies, log parsers, IDS/IPS solutions etc. At least 11-12+ years of combined IT, network, and security work experience with a broad range of exposure such as systems analysis, digital forensics, networking, web filters, web application vulnerability assessments, application development, database design, and/or system administration. Experience in working with third parties to coordinate, monitor, respond to and coordinate cybersecurity threats, incidents, mitigations, and response cycles. Experience creating, modifying, and analyzing scripts such as PowerShell and Python. Experience creating policy, procedure, and working documents at a high level of proficiency. Ability to communicate technical information to broad audiences verbally and in writing. Ability to establish and maintain effective working relationships with cross functional teams. Experience working independently and as a project team member in security administration. Ability to contribute to the capability development and team rapport of the Departments Security Operations Center. Experience working in a NIST Cybersecurity Framework aligned security program. Preferred Experience: Hold active information security certifications such as: CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA etc. Experience in IT security related to application development and code reviews. Experience as a project team leader in security administration. Experience creating automated processes. Experience leveraging artificial intelligence in attack detection, analysis, and response processes. Knowledge of the MITRE ATT&CK framework. Required Duties and Responsibilities of Consultant shall include but are not limited to: Performs security assessments of new technologies, new applications, workstations, networks, and network devices prior to implementation. Develops scripts, tools, and methodologies to enhance testing and analysis processes. Assesses servers and workstations for configuration hardening. Provides guidance on vulnerability mitigation, non-compliance, and identification and remediation of malware infestations. Gathers and analyzes Open-Source Intelligence (OSINT) to find information disclosures and assess the Departments environment for indicators of compromise. Communicates methods employed and findings upon completion of assessments. Performs regular vulnerability scans and prioritizes remediations. Submits remediation tickets to the responsible technical teams, tracks the progress to closure as per SLAs, and validates the results. Best Regards, Anilj | Technical Recruiter (817) 710-8633 Ext:108 Direct (469) 788-7858 Email: [email protected] www.rbctechsolutions.com Keywords: information technology microsoft Florida On-Site Lead Security Analyst (CEH, CISSP, CISA, CISM, CCNP, CCIE Security, GCIA) [email protected] |
| [email protected] View all |
| Tue May 07 22:25:00 UTC 2024 |