Cyber Security Tools Analyst, Jr.

Location: Santa Ana, CA
Date Posted: 11-02-2018
All qualified resumes will be responded too within 24 hours or less
This position will be responsible for working with the Senior Cyber Security Tools Analyst to configure, maintain and recommend tools for the 24/7 Security Operations Center (SOC). The candidate must have a bachelor’s degree in Computer Science, Engineering, Information Technology, Cybersecurity or related field and at least 2 years’ experience including at least one year working with cyber security tools.
 
Job Specific Responsibilities:
  • Develop moderately complex security designs and test plans using existing technology.
  • Develop cyber security analytics and threat intelligence using multiple data sources provided to the Security Information and Event Management (SIEM) system.
  • Work closely with the SAIC CISO to identify and recommend process and system improvements to the security program.
  • Create relevant documentation and recommendations for changes to the current security architecture.
  • Drive the capabilities and execution to effectively optimize and improve enterprise security.
  • Demonstrate expert level knowledge of security services and implementations.
  • Work with SOC engineers and analysts to ensure the tools meet both the SOC and the customer’s needs.
  • Recommend configuration and reporting strategies based on the results of vulnerability assessments, to ensure effective achievement of the organizational objectives.
  • Provide support for security incidents throughout the incident lifecycle as needed and make recommendations to ensure enterprise infrastructure is protected.
  • Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards.
  • Work with the SAIC CISO to develop a metrics program to report on overall SOC performance and effectiveness
  • Vendors/Tools/Management Systems
  • Wireshark
  • LogRhythm
  • ServiceNow
  • Keylight
  • Nessus
  • Microsoft Exchange Online Protection
  • Sourcefire
  • Blue Coat
  • Zscaler
  • McAfee Data Loss Prevention
  • Bachelor degree in Computer Science, Engineering, Information Technology, Cybersecurity or related field or a minimum of  one year of network or UNIX/Linux system administration, software engineering, software development.
  •  Security+ and/or CySA, plus CCNA Certification,Experience with Security Assessment Tools (Nessus) and Security Information and Event Management Tools (LogRhythm).
  • Proficient in one or more computer languages including scripting languages.
  • Experience performing Systems Security Engineering and Operations
Understanding of networking concepts and technologies including TCP/IP, Routing, Switching, NAT, OSI Model, etc.
Ability to manage multiple projects and multiple deadlines in an organized fashion.
Experience with the following tools (or equivalent):
Wireshark
LogRhythm
Nessus
DESIRED QUALIFICATIONS & EXPERIENCE
CISSP-ISSEP and/or SANS/GIAC Certification, a plus and a plus
 Certified Information Systems Security Professional (CISSP)
CCNP/CCDP
SANS/GIAC certifications
Cisco WLAN certification
Experience in Information Assurance Policy and Guidelines
NIST Special Publication 800-53
NIST Cybersecurity Framework
ITIL® Foundation Level or higher CertificationKnowledge of reverse engineering tools, computer forensic tools and a working understanding of computer forensic techniques and methodologies.
or
this job portal is powered by CATS