| Job Opportunity of InfoSec Logging Analyst at Remote, Remote, USA |
| Email: [email protected] |
| From: sravani Kanaparthi, Avance Consulting Services [email protected] Reply to: [email protected] Hi All, Find the Job Posting and share the related resmes. A quick brief of the Job: Infosec Logging Analyst Contract McLean, Virginia(Remote) Summary of Engagement with high level outcomes: The Consultant will provide experienced application logging consultants with deep technical skills for Client's Application Logging and Monitoring Audit Issue Remediation initiative. These services will follow the guidance provided by Client's Cyber Defense team and comply with FHFA regulations, Client policies, and relevant industry standards, as provided at Client's discretion. The Consultant will support a large-scale effort focused on gathering and analyzing security logs from over 433 business applications and 36 high risk systems, including Saas, Commercial of the shelf (COTS), Cloud and internally developed applications. This will involve interviewing Subject Matter Experts (SMEs) from each business unit, completing detailed questionnaires on available logs, developing logging strategy for each individual application, onboarding existing logging mechanisms into the Splunk environment, developing logging strategy and architecture for Saas and cloud applications using Saas posture management products and Cloud Access Security Broker (CASB) and assisting with the development of a backlog and exception process as needed. Specifically, the Services may consist of, but not be limited to providing assistance with the following activities and providing all relevant Deliverables in the performance of such Services. Key Responsibilities: Develop a project plan to conduct application logging capability review against Client provided application risks indicators, audit requirements and application architecture specific industry standards for Cloud, SaaS, CDIS and an prem custom applications. Conduct interviews with application SMEs to understand logging capabilities of each in scope application. Develop and administer questionnaires to capture detailed information about each application's logging structure and security events. Identify and document available security logs for the specified scopes: Access Account Changes, Authentication, Authorization Failures, Access to Restricted Data, Data Export, Input Validation Failures, Object Creation/Deletion, and Privilege Escalation. Catalog the application specific data to integrate into a business intelligence and reporting tool Collaborate with cross functional teams to prioritize and manage a backlog of logging enhancement initiatives. Provide recommendations (based on Client direction) regarding development of remediation alternatives for gaps identified during interviews Document exception plans as per Client audit documentation standard for applications which cannot meet application logging audit requirements Recommend application logging and continuous monitoring design and architecture (based on Client direction) which can be automated using existing SIEM tools and industry leading technologies for Saas applications like SaaS Posture Management Platforms Ensure designed architecture can be integrated with Client Enterprise Security architecture specifically SIEM, Identity, DLP and CASB platforms Provide recommendations to both internal teams, COTS and Saas application vendors for future log enhancements based on findings from interviews and assessments. Required Skill Strong understanding of application security principles and logging best practices Knowledge of Saas native application security architectures (Salesforce, Workday, M365, ServiceNow and other enterprise Saas applications Knowledge of various application types (SaaS, COTS, in-house) and their logging capabilities Experience with log management and analysis tools, specifically Splunk Experience with CASB for end-to-end log analysis and visibility of Cloud and Saas applications Familiarity with FFIEC compliance and regulatory requirements related to security logging and monitoring Experience with identification of controls, operational auditing techniques, risk assessments, business process and intimal It control documentation and testing, gap identification, selection and implementation of related tools (GRC) Background in conducting interviews, assessments, and documentation for large-scale projects. Ability to work independently and manage multiple tasks effectively. Excellent communication skills, with the ability to engage with technical and non-technical stakeholders Prior experience in a similar role within financial services or regulated industries Certification in information security (eg, CISSP, CISM) is a plus. Keywords: information technology Job Opportunity of InfoSec Logging Analyst [email protected] |
| [email protected] View all |
| Thu Oct 17 00:50:00 UTC 2024 |