Security Analyst/ Security Architect

Overview

Hybrid
Depends on Experience
Contract - W2
Contract - 12 Month(s)
No Travel Required

Skills

SIEM/ Security Information Event Management
PowerShell
C/C++
CISO AMP
CISO Umbrella

Job Details

Position Description Security Analyst Project Lead
Candidate should be an expert in security administration and continuous security monitoring. In addition, they should be an expert in performing log analysis, risk analysis, incident response processes, and investigation procedures. This includes experience working in a security operations center and working with security tools including SIEM, EDR, IPS/IDS. Candidate should have experience with data blending and report generation.

Job Duties
Planning, implementing, upgrading, and monitoring security measures for the protection of computer network security and information both LAN and cloud based.
Develop and maintain policies and procedures related to information security and privacy.
Monitoring and reporting on SIEM and EDR event data.
Maintaining records of security events investigated and incident response activities.
Serve as a Tier III security support on the agency s security team.
Work with and provide mentorship to other information security team members on security strategies, processes, response, and technologies.
Responding to computer security breaches and viruses.
Provides incident response support, threat assessment, and computer forensic investigations.
Coordinate and assist with other Information Technology functions/teams to accomplish agency security objectives
Creating risk analysis documents when reviewing system functional specifications including use cases, activity, sequence, data flow, collaboration, and diagrams.
Create security report using complex SQL queries, API integrations, and Power BI.
Knowledge of blue team tools such as SCAP workbench, vulnerability scanning, and hardening techniques.
Knowledge of red team tools such as nmap, wireshark, Metasploit, and password crackers.

Additional Skills:

SIEM, EDR IPS/IDS Experience
Incident Response Experience
Security Documentation
SQL
C/C++
Red Team experience
Blue Team experience
Python
Powershell
Microsoft 365 Security Administration
Microsoft Cloud Service Services
Microsoft Azure Security
CISO AMP
CISO Umbrella
Preference will be given to experienced Security Operation Center (SOC) security analyst.
SIEM/Log Analyst experience.
SQL/Scripting (reports and automation) experience.

PREFERRED EDUCATION/CERTIFICATIONS:
Any of the below.
Security+
CySa+
Pen+
CASP+
CEH
SSCP
CCSP
CISSP