| Security Specialist- Mid Level at Remote, Remote, USA |
| Email: [email protected] |
| From: dheeraj, webgeosolutions [email protected] Reply to: [email protected] Greetings from Web Geo Solutions, LLC. We have an exciting new job opportunity with our direct client, matching your skills. Please review the job description and respond with all the requested details if you are interested. Job Details JOB ID: NCAOC - Security Specialist- Mid Level (703112) Client: NC - Last day to apply: 2/1 Initial Term: 12 Months+ Tentative start date: ASAP Interview mode: Webcam/In-Person Work location: Remote Job Description: ****The manager has a strong preference for local candidates. The work will be 100% remote. However, in the event of a major data center upgrade, best practices would say for the resource to be on site in the event of a catastrophic failure requiring a direct connection. In a rare instance, they may have a meeting where the candidate would need to be on site, but no more than once or twice a year. Scope Of Work: No. 1 40% Security Operations and Network Operations (SOC): Responsible for the Weekends and Holidays Midnight to Noon, (12:00 AM 12:00 PM), and two weekdays, 12:00 AM 9:00 AM, operations and maintenance of the NCAOC Security Operations Center Security Posture. Responsible on Weekends and Holidays to respond to Network Operations Center priority one circuit outages. Responsible for creating, triaging, updating, and seeing closure of Security Operations Incident, Request, and Enterprise Change Management tickets. Monitors and maintains Firewalls and corresponding management tools (FMC) ASDM), Intrusion Prevention Systems (IPS), Vulnerability Management (VM), Cisco Umbrella domain name security, ISE network Access Control, Posturing, and Profiling, IPsec VPN tunnels, AnyConnect remote users and security module, Third Party Partner Security Incident and Event Manager (SIEM), and other network and cloud security tools. Use tools (Wireshark and interface captures, and log searching) to assist in troubleshooting network, device configuration, and network security related problems. Responsible for firewall cleanup processes, tasks, and learning firewall tools to assist in performing these processes and tasks. Follow and maintain SOC process and technology documentation. Open and work to closure vendor TAC cases, mostly Cisco, to resolve incidents and device issues. Provide reports and metrics for the Operations and Administration Manager as requested. Interface with all other TSD technical teams in initiatives and activities the require Security Operations Center resources. No. 2 20% Network Security and Cybersecurity: Monitor and respond to Third Party Partner initiated security investigations. Provide support of the established Incident Response Policy from beginning alert and investigation discovery through recovery to closure. Subscribe to and monitor Security Product Advisories and Cybersecurity Organization Bulletins researching and ensuring coverage of security device risks and Common Vulnerability Enumerations (CVE) Update PSIRT/CVE spread sheet to report progress and coverage of Security Product Advisories and Cybersecurity Organization Bulletins. Monitor and Maintain the IPS signatures, Block lists, URL reputation lists, and malware file lists to ensure latest security recommendations are implemented. Use monitoring and security diagnostic tools to threat hunt for network and device vulnerabilities, security risks and potential threats. Research trends to assist the Security Operations team in staying up to date on industry best practices and current Cybersecurity trends, tools, techniques, and procedures. No. 3 30% Network Patching, Upgrading, and Maintenance: Evaluate, plan, and implement network devices, (switches, routers, management tools, etc.) and network security devices and tools (firewalls, IPS, ISE, etc.) upgrades and patches on a monthly and as needed schedule. Coordinates with various TSD teams in the evaluation, planning and implementation of patching, upgrading, and maintenance. Update patching spread sheet to reflect historic and current versioning. Uses software tools to manage patching, upgrading and maintenance of network and security devices (Visio, Microsoft Office, etc.) No. 4 10% Security Industry and Product Research and Training Attend, classes, seminars, webinars, conferences, training sites, and research product documentation, to enhance professional development and to progress in the field of Network and Cybersecurity trends and developments. Use AOC provided resources to work toward Security Profession Certificates, (Cisco CCNA, routing switching, CCNA Security, CCNP Security, CISSP) Knowledge, Skills and Abilities: Knowledge: Knowledge of enterprise network security technologies: Cisco FTD and ASA firewalls, IPS, FMC, IPsec tunnels, AnyConnect client, Cisco ISE, Cisco Umbrella, Third Party SIEM, DNS, VLANS, NAT Cisco Secure Endpoint (AMP), Load Balancing IP/Domain/URL security intelligence sources (virus total, TALOS, etc.) Knowledge and or possession of Security Profession Certificates, (Cisco CCNA, routing switching, CCNA Security, CCNP Security, CISSP) is preferred but not required. Knowledge of NCAOC security policy and Criminal Justice Information System (CJIN) policies is preferred but not required. Skills: Skills in: enterprise security technology; fundamental knowledge of the following, IPsec, IPS/IDS Snort Engine, SIEM, Identity Services Engine (ISE), Vulnerability Management, Access Control/AAA; networking fundamentals in the areas of enterprise network topology, routers, switches, servers, NAT, DNS; TCP/IP architecture and functionality, Wireshark and interface captures, and log searching to assist in troubleshooting configuration and network security related problems. Abilities: Ability to: plan and manage complex projects independently and with a team; communicate effectively with users to determine and resolve problems; communicate technical information to lay persons; interpret and follow established employment and policies; produce highly technical documents; consider the implications of new technology implementations; balance the application and system access business needs of users with network security protections. If you are interested, please reply with below details for further evaluation Please send all the requested below information for consideration Contact details (and employer details if C2C) Your full legal name (Must match with state issued ID or passport) Phone number Personal email id (this same id should be used to send E-RTR after submission) Desired hourly rate (above max advertised rate is not considered): W2: $ C2C: $ Work Status (H1B, EAD, GC, US Citizen), please attach a copy of work authorization: If H1B, who holds the visa (contact details, please include name, phone number and email) If selected, how soon would you be available to start Have you ever worked for this client If so, please provide team name, project name, reason for leaving and when the engagement ended. Upon selected, employment is subjected to 7-year national criminal background check. Will you be able to attend In-Person interview (Yes or No) Your current address Are you available to be on-site at clients location for the duration of the project Note: Payment for all approved hours will be paid at the straight hourly rate regardless of the total hours worked (regular and overtime hours) by the engaged resource. Do you accept this requirement Upon selection, candidate must be able to provide three (3) references from prior engagements before a final decision is made. Do you accept this requirement LinkedIn profile URL Skill Matrix NCAOC - Security Specialist- Mid Level (703118) Skill Required / Desired Amount in years Your actual Experience in years (Please fill all of them) Configuration and administration of Cisco ASA Firewalls Required 3 Configuration and administration of Cisco FTD Firewalls Required 3 Fundamental knowledge of the following, IPsec, IPS/IDS Snort Engine, SIEM, Identity Services Engine (ISE), Vulnerability Management Required 3 Fundamentals in the areas of enterprise network topology, routers, switches, servers, NAT, DNS; TCP/IP architecture and functionality Required 3 Works independently to accomplish short and long term project goals with clear and concise communication to team members and management Required 3 Your resume in MS Word format, copy of any relevant certifications & copy of work authorization (H1B/GC/EAD). Please check the other positions that are currently open with several NC State agencies http://www.indeed.com/cmp/Web-Geo-Solutions,-LLC/jobs Keywords: access management green card wtwo microsoft Idaho North Carolina |
| [email protected] View all |
| Sun Feb 05 15:56:00 UTC 2023 |