Improves quality of analytical capabilities by remediating missing standard operating procedures and missing or failed critical cybersecurity alerts; and drafting and reviewing new standard operating procedures for new cybersecurity alerts.
Leads and develops new Security Operations Center processes and procedures by responding to stakeholder and business unit requests; ensuring proper turnover of activities and tasks; completing the Lead Intrusion Analyst's tasks when absent; collaborating with the team; modifying alert logic for higher reliability and identifying new risk detection; researching and monitoring service level functions and analyst metrics (for example, performance, consistency, reliability); participating in focused incident remediation and incident management team initiatives; monitoring alerts and other application checks and balances; and identifying and sharing recommended improvements and best practices.
Monitors, analyzes, and remediates cybersecurity events by adhering to defined operating procedures; working problem tickets and outstanding cases; documenting analytical steps during alert research and remediation; running commands and executing scripts; and communicating with stakeholders during event troubleshooting and research.
Identifies advanced risks and cyberattacks by leveraging big data analytic methodologies such as data visualization tools to perform subtle event detection.
Additional Job Description
Ability to work in 24x7x365 Operations Center, Night Shift (6pm to 6am)
Minimum Qualifications...Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.
Minimum Qualifications: Bachelor’s degree in Computer Science, Information Technology, Engineering, Computer Information Systems, or related field and 3 years' experience in information technology or related field within the last 7 years OR 5 years' experience in information technology or related field within the last 7 years OR a Master's degree in Computer Science, Information Technology, Engineering, Computer Information Systems, or related field and 1 year's experience in information technology or related field within the last 7 years.
Preferred Qualifications...Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.
Building, developing, and implementing quality programs/systems, Information Security, Information Technology, Operating System - ABAP, Operating System - MVS, Operating System - Unix, Operating System - Windows, Troubleshooting, Web Design, Web Services
CCNA - Cisco Certified Network Administrator - Certification, CISA - Certified Information Systems Auditor - Certification, CISSP - Certified Information Systems Security Professional - Certification, GCIH - GIAC Certified Incident Handler - Certification