Systems Analyst 3

Overview

On Site
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 6 day((s))

Skills

UI
Information Technology
Network
Tier 1
Recruiting
Training
Partnership
Communication
ARM
Machine Learning (ML)
Normalization
Content Development
Dashboard
Application Development
Microservices
.NET
Documentation
Collaboration
Technical Drafting
Testing
Computer Science
Information Systems
Software Engineering
Software Development
SIEM
Cloud Computing
Incident Management
Threat Modeling
Scripting
Python
Windows PowerShell
C#
JavaScript
Continuous Integration
Continuous Delivery
Git
Version Control
API
JSON
YAML
Writing
Debugging
Workflow
Cyber Security
Management
Analytics
Microsoft
Security Operations
Firewall
GitHub
Microsoft Azure
DevOps
Health Care
Oracle Linux

Job Details

CCS Global Tech is a rapidly growing Information Technology company with a diverse portfolio of technology products and services and a large network of industry partnerships. With over 22 years of being a successful business with a global talent pool and presence, CCS is a certified Microsoft Gold Partner and specializes in delivering expert Microsoft based solutions for technical and business needs. We have been recognized by Inc. 500 Magazine as one of the fastest growing small companies in the Unites States.
we are a Tier 1 vendor for the City and County of San Francisco for Cloud Services, Staffing Services and Training Services. For this multi-year opportunity with a diverse set of needs to address, we are currently focusing on establishing partnerships with individuals as well as companies who can help us enhance our overall service portfolio, cut lead times, and ultimately help us deliver successfully. We currently hold sizable Government accounts in the San Francisco bay area including City and County of San Francisco, San Mateo County, and Santa Clara County.
We take great pride in our global reach and local influence. Your experience alongside our highly skilled and talented internal team who guide you along the way, offers key insights into what helps you stand out in a competitive job market.
If you are a partner company, please submit resumes with contact information of your own W2 Consultants only. Submitted consultants are expected to have excellent communication skills.

Roles/Responsibilities:

1. Microsoft Sentinel SOAR Development (40%)

  • Designs, develops, tests, and deploys Sentinel SOAR automation playbooks using Azure Logic Apps, Azure Functions, ARM templates, and REST APIs.
  • Creates automated workflows for alert enrichment, triage, response actions, notification processes, and case management.
  • Integrates Sentinel with third-party systems (EDR, IAM, ticketing systems, email gateways, firewalls, etc.) to automate security operations.

2. UEBA & Analytics Engineering (30%)

  • Develops custom UEBA detection rules, anomaly models, ML-based behavior patterns, and advanced hunting queries (KQL).
  • Builds and maintains analytics content, data parsers, normalization rules, and entity behavior profiles.
  • Evaluates behavioral anomalies and collaborates with cybersecurity teams to fine-tune detection logic.

3. SIEM Content Development & Platform Engineering (15%)

  • Designs and implements custom data connectors, ingestion pipelines, and data transformation logic.
  • Creates dashboards, workbooks, hunting queries, and detection-as-code assets.
  • Performs platform tuning to improve performance, reduce noise, and align to MITRE ATT&CK and Zero Trust principles.

4. Application Development & Integration (10%)

  • Develops supporting code modules, scripts, microservices, and helper APIs using Python, PowerShell, .NET, or similar languages.
  • Works with DevOps pipelines, CI/CD processes, version control, and infrastructure-as-code where applicable.

5. Documentation, Collaboration & Support (5%)

  • Writes technical design documents, SOPs, architecture diagrams, and automation runbooks.
  • Collaborates with DSHS, HHSC CISO Office, and cross-functional stakeholders on requirements, testing, and deployment.
  • Provides Tier III support for Sentinel engineering issues and participates in after-action reviews when needed.

Mandatory Skills:

  1. Graduation from an accredited four-year college or university with major coursework in computer science, computer information systems, software engineering, cybersecurity, or a related field. -4 years
  2. Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering. -2 years
  3. Two (2) years of full-time experience in software development, cloud engineering, SIEM engineering, or cybersecurity engineering. -2 years
  4. Knowledge, Skills, and Abilities (KSAs)
  1. Knowledge of:
  • Microsoft Sentinel architecture, SOAR, and UEBA capabilities.
  • Azure cloud services, Logic Apps, Azure Functions, Event Hubs, Key Vault, and Azure AD.
  • Security operations processes (triage, threat detection, incident response, threat modeling).
  • MITRE ATT&CK, NIST CSF, Zero Trust Architecture concepts.
  • Programming and scripting languages (Python, PowerShell, KQL, C#, JavaScript, or equivalent).
  • CI/CD pipelines, DevOps practices, and Git-based version control.
  • API integrations and JSON/YAML structures.
  1. Skills in:
  • Building Logic App workflows and custom Sentinel automation playbooks.
  • Writing complex KQL queries for analytics, hunting, and behavioral detection.
  • Developing custom connectors, data maps, and parsers.
  • Designing and optimizing UEBA detection models.
  • Debugging SOAR workflows and resolving integration issues.
  • Communicating technical information clearly to both technical and non-technical audiences.
  1. Abilities to:
  • Work independently and take ownership of complex development tasks.
  • Translate security requirements into scalable technical solutions.
  • Analyze threat behaviors and develop meaningful detections.
  • Work collaboratively with cybersecurity, infrastructure, and application teams.
  • Manage multiple work assignments and meet deadlines

Desirable Skills:

  1. Three (3) or more years of hands-on technical experience with Microsoft Sentinel. -3 years
  2. Experience developing UEBA models, anomaly detection rules, and behavior-based analytics. -1 year
  3. Experience building Security Automation Playbooks (SOAR). -1 year
  4. Microsoft certifications such as: SC-200: Security Operations Analyst, AZ-900 / AZ-104, SC-100 / SC-300 -1 year
  5. Experience integrating Sentinel with EDR, IAM, firewalls, and ticketing systems. -1 year
  6. Experience with DevOps pipelines (GitHub, Azure DevOps). -1 year
  7. Experience working in a government, healthcare, or regulatory environment. -1 year
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About CCS Global Tech