| :Information Security Specialist III at Remote, Remote, USA |
| Email: [email protected] |
| RE::Information Security Specialist III Location::Location:Chicago, IL(Onsite) ****Only USC And GC**** Key Responsibilities: MITRE ATT&CK Framework: Utilize the MITRE ATT&CK Framework for threat detection creation, gap assessment and analysis. Security Detection Implementation: Implement, configure, and maintain security detection rules and mechanisms, including intrusion detection, anomaly detection, and log analysis tools, to identify and respond to security incidents. Security Operations: Play a critical role in the day-to-day security operations, including monitoring, tuning, analysis, and proactive threat hunting. Incident Response: Lead incident response efforts, investigate security incidents, conduct root cause analysis, and implement corrective measures. Kubernetes Incident Response: Apply expertise in Kubernetes for incident response and forensic analysis. Security Automation: Develop and maintain automation scripts and tools to streamline security detection operations and response. SOAR Playbooks: Build, design, run, and troubleshoot playbooks within a SOAR (Security Orchestration, Automation, and Response) solution to automate incident response processes. Documentation: Maintain comprehensive documentation of security detection configurations, incident response procedures, and investigations. Stay Current: Stay up-to-date with the latest security threats, vulnerabilities, and industry trends to proactively enhance security detection measures. Skills: Experience with cloud security detection tools and technologies, including intrusion detection, anomaly detection, and log analysis. Proficiency in scripting and automation (e.g., Python, Bash). Experience in incident response, investigations, and security operations. Proficiency in Kubernetes with a focus on incident response and forensic analysis. Familiarity with the MITRE ATT&CK Framework for threat detection and mitigation. Experience working with Splunk Enterprise Security or similar SIEM solutions. Excellent problem-solving and analytical skills. Strong communication and teamwork skills. Relevant certifications such as CISSP, GCIH, GCIA, Certified Kubernetes Administrator (CKA), or Splunk certifications are a plus. Keywords: Education: Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred). Google Cloud Professional Cloud Security Engineer certification or equivalent experience. Skills and Experience: Required Skills: COMPUTER SECURITY CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONAL CYBER SECURITY SIEM HELP DESK Additional Skills: NETWORK PROTOCOLS PROBLEM SOLVING MAINFRAME MICROSOFT OFFICE NOVELL UNIX INFORMATION SECURITY USER ACCESS Keywords: green card Illinois :Information Security Specialist III [email protected] |
| [email protected] View all |
| Thu Aug 08 22:56:00 UTC 2024 |