Job Details
Experience Needed:
Career Level:
Education Level:
Salary:
Job Categories:
Skills And Tools:
Job Description
- Use strong TCP/IP networking skills to perform network troubleshooting to isolate and diagnose common network problems.
- Configure, manage, and upgrade Intrusion Detection Systems (IDS), Internal Vulnerability Scanners (IVS), and Intrusion Protection Systems (IPS) platforms.
- Analyze and respond to security events from FWs, IDS, IPS, AV and other security data sources.
- Maintain and develop procedures and playbooks for security alerting, analysis, and response
- Report daily activity with proper detail to management, and support other periodic reporting requirements
- Support security automation and orchestration projects
- Apply industry knowledge to mature processes and procedures
- Engage and support the incident response process for containment of security incidents
- Adhere to policies, procedures, and security practices.
- Resolve problems independently and follow documented escalation procedures.
- Analyze and investigate on threat actors and malicious activity in client environments
- Differentiate between potential intrusion attempts and false alarms
- Leverage our proprietary systems to develop and publish vulnerability reports
- Develop comprehensive and accurate presentations for technical and executive audiences
- Triage and respond to security events on a 24/7 basis
Job Requirements
- At least 2 year experience in Information Security or Networking.
- Experience and strong understanding of networking concepts, including firewalls, TCP/IP, proxies, and IPS/IDS
- Preferred candidates will have one or more certifications in Security/Networking including Security+, GSEC, GCIA, GCIH or other security specific vendor/product certifications
- Solid experience with or strong understanding of the following enterprise security technologies: SIEM, IPS/IDS, Malware protection, EDR, DOS protection, and WAF
- Experience with network packet analysis
- Experience and strong understanding of enterprise IT environments, and diagnosing and troubleshooting operational issues
- Experience with Network security concepts & Information security best practices
- Unix / Linux operating systems
- TCP/IP networking
- IP Tables/Packet filter firewalls
- Experience in security monitoring via SIEM, and running or supporting security incident response
- Strong English communication skills (oral and written)