| Information Security Engineer | Chevy Chase, MD (Onsite) at Chevy Chase, Maryland, USA |
| Email: [email protected] |
| Hello, Hope you are doing well. My name is Rajdeep Shaw from Clovity Inc. and I am actively looking for a suitable candidate to fill the below given position with my client. If you or someone you know is available & interested, please reach me back as soon as possible for further proceedings. Job Title: Information Security Engineer Location: Chevy Chase, MD (Onsite) {Need Local} Duration: 6 Months (C2H) Visa: USC or GC only Need local resources from DMV area only Job Description: Top skills/ How are they applied Primary Proficiencies At a high level, we are looking for an experienced System Administrator who has moved into Cybersecurity. The focus is almost entirely on technical ability and experience. Some key areas of expertise are: Administering a Windows Active Directory Domain, which includes: o Understanding the design and security of Active Directory o Microsoft DNS o IIS o Authentication and Security protocols, i.e., Kerberos o Windows Event Logs and Event IDs o Registry Core Networking and Security Systems: o DNS o DHCP o L2/L3/L7 firewall and switch rules and traffic flow o Antivirus, including EDR and policies o Web inspection, logging, and proxy technologies Technical Understanding and Familiarity with Benchmarks: o CIS, CISA, FEDMRAMP, FFEIC Cybersecurity/Pen Testing Tools: o Burp suite o Wireshark o Nmap o Nessus Technical Understanding and Familiarity with Vulnerability Remediation: o For example, advising the System Admin and Cloud Engineering Teams on how to address vulnerabilities or helping them understand the impact/attack path, i.e., RCE (Remote Code Execution) First-hand Experience Working with Cybersecurity Systems: o SIEM o Vulnerability Management Secondary Proficiencies Nice to haves Experience with Digital Forensics Red, Blue, and Purple Team experience, ideally in developing and running AWS and Azure experience Static and behavioral threat analysis, i.e., analyzing documents, applications, and sites for potential threats. JOB SUMMARY: As the Senior Information Security Analyst at Forbright Bank, your primary mission is to support the security operations of the Bank. You will be responsible for identifying, investigating, mitigating, and reporting on potential threats such as phishing, malware, and network attacks through technical and written assessments. Your expertise in threat identification, cybersecurity tools, intrusion detection, and the implementation and maintenance of secured networks and systems will be crucial. You will provide technical analysis, assessment, and recommendations in security situational awareness, operational, network, and applications systems security monitoring, and vulnerability management. DUTIES AND RESPONSIBILITIES: Identify, investigate, mitigate, and report on potential threats such as phishing, malware, and network attacks through technical and written assessments. Perform detailed static and behavioral analyses on emails, applications, websites, and cloud applications. Assist with developing, conducting, and reporting on Red, Blue, and Purple Team exercises conducted internally and by 3rd-parties from a technical perspective. Assist with penetration testing, results analysis, recommendations, remediation planning and implementation, and reporting. Conduct regular assessments of industry best practices and benchmark standards and make recommendations for implementation and reporting. Administer enterprise SIEM and Vulnerability Management solutions and related tools, including proactive event monitoring with independent analysis and assessments, containment and remediation recommendations, alert tuning, and cloud and on-premise solutions integrations. Utilize incident response procedures and workflows for triage, analysis, notification, escalation, containment, remediation, and reporting. Active participation in the Banks Security Awareness Program, providing guidance for and conducting IT and Staff training, simulated phishing campaigns, and reporting. Provide clear and detailed written analysis, reports, and tickets for both technical and executive audiences. Provide after-hours and weekend analysis on an as-needed basis outside of general working hours. DESIRED QUALIFICATIONS/EXPERIENCE: Bachelors degree in information technology or a related technical discipline with at least two years of experience working in a Cybersecurity role. A background with at least three years in Systems Administration or Engineering focusing on Windows-based environments is required; additional familiarity with Linux, Mac, and Cloud environments (AWS, Azure) is preferred. Cybersecurity-related certifications (or ability to obtain certification) such as Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), GIAC GSEC Certified (GIAC), CompTIA Cybersecurity Systems (CySA+). Hands-on experience in cybersecurity and network analysis tools, network topologies, intrusion detection methodologies, Windows systems, and preferably Linux systems analysis for evidence of compromise. Familiarity with industry best practices and benchmark standards such as NIST SP 800-53, CIS, CISA, FFIEC Booklets, and Critical Security Controls. Excellent verbal, written, and interpersonal communication skills. Excellent analytical and problem-solving skills. Highly organized and efficient, able to work with all levels of staff in all areas of the Bank, detail-oriented, a team player, and excellent time management skills. Thanks and Regards Rajdeep shaw Clovity | www.clovity.com Email: rajdeeps @clovity.com LinkedIn: https://www.linkedin.com/in/rajdeep-shaw-39a615249/ An E-verify Employer -- Keywords: access management information technology green card Maryland Information Security Engineer | Chevy Chase, MD (Onsite) [email protected] |
| [email protected] View all |
| Thu Jul 18 21:44:00 UTC 2024 |