Network Security Monitoring and Incident Response Analyst

  • Austin, TX
  • Posted 14 hours ago | Updated 13 hours ago

Overview

On Site
Depends on Experience
Contract - Independent
Contract - W2
Contract - 12 Month(s)
No Travel Required

Skills

Incident Management
Network Security
SIEM
Cyber Security
EDR
Microsoft Sentinel
Tenable
CISCO security
Netflow
EndPoint
Intrusion Detection

Job Details

Role: Network Security Monitoring and Incident Response Analyst III

Duration: 12+ Months

Location: Austin, TX 78744 (Onsite 5 days a week)

Experience: 15+ Years

The client work to be accomplished:

Work involves assisting in supervision and service delivery control of the client Cybersecurity Operations tools team comprising of seven (8) staff augmentation contractors. Employee will ensure real-time data, metrics, and correlated incident input to the CSOC Incident Response Team. Works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.

DUTIES

Employee will assist in supervising and managing the client Cybersecurity Operations Tools Team; will work under the management of the client Cybersecurity Officer; will be responsible for administration, maintenance, and resilience of Cybersecurity tools; real-time data, metrics, and correlated incident input to the CSOC Manager for use in daily monitoring and incident response; and support of daily operations and incident response activities. Employee will provide tooling input for end of month and annual reporting requirements as dictated by the client As appropriate, Employee will provide recommendations for improvements in daily operations, resilience, and Cybersecurity operational maturity. Employee will be responsible for planning and management of tooling deployment and operating\managing the security tool sets. Employee will be responsible for assisting in managing ongoing agency cybersecurity programs (e.g. Tabletop exercises).

Team members will provide services in the following areas:

  • Custom Managed Scanning Services
  • Custom Managed Endpoint Protection
  • Managed CISCO Secure Network Analytics Service
  • Security Information and Event Management (SIEM) administration

Required Skills:

  • 8 years of Technical Team Management experience
  • 8 years of Deployment and configuration of Network Security monitoring and incident response tools (EDR, Scanners, SIEM, Netflow, etc)
  • 8 years of Administration of Network Security Monitoring and Incident Response tools (EDR, Scanners, SIEM, Netflow, etc)
  • 8 years of Participation and experience in intrusion detection and incident response activities
  • 8 years of Effective, professional business communication and reporting

Preferred Skills:

  • 8 years of Experience with the CISCO security suite of tools
  • 8 years of Experience with Microsoft EDR tools
  • 8 years of Experience with Microsoft Sentinel
  • 8 years of Experience with the Tenable suite of tools
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.