Security Analyst

Job Id: SC-11439

Remote/Local Security Analyst (CISSP/Security+) with LINUX, Windows, Network, NISY CSF/CJIS/IRS/CMS MARS-E, SIEM/CRIBL/XDR/vulnerability management/DLP/endpoint security, python/bash experience

Location: Columbia, SC (Department of Administration)
Duration: 12 Months

Candidate location: No South Carolina residency required. Open to nationwide candidates. All travel-related costs for onsite work will be the responsibility of the resource no matter the frequency of onsite work.
THIS POSITION WILL PARTICIPATE IN AN ON-CALL ROSTER.

Skills:
REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):

CRIBL DATA MODELING AND LOG PIPELINE DESIGN AND IMPLEMENTATION.
Strong understanding of enterprise security architecture and engineering principles.
Experience implementing and supporting enterprise security tools (SIEM, XDR, Vulnerability Management, DLP, endpoint security).
Experience developing automation and integrations using scripting languages such as Python and Bash.
Knowledge of cybersecurity best practices, threat detection, and defensive security strategies.

Experience with Linux and Windows operating systems, including system hardening and security configuration.
Understanding of networking concepts, security protocols, and secure system design.

REQUIRED EDUCATION/CERTIFICATIONS:
BACHELOR S DEGREE IN AN
INFORMATION TECHNOLOGY OR
INFORMATION SECURITY RELATED
FIELD
EIGHT YEARS OF RELEVANT WORK
EXPERIENCE MAY BE SUBSTITUTED IN LIEU OF EDUCATION
FIVE YEARS OF EXPERIENCE IN SUPPORTING LARGE IT ENVIRONMENTS AND/OR SYSTEM DEPLOYMENTS

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
HANDS-ON CRIBL DATA MODELING EXPERIENCE.
Hands-on SIEM administration, analysis, and reporting experience.
Experience building and deploying Linux-based security sensors.
Familiarity with security frameworks and compliance standards such as NIST CSF, CJIS, IRS 1075, and CMS MARS-E.

PREFERRED EDUCATION/CERTIFICATIONS:
CISSP
Security+

Job Description:
PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN OCCASIONALLY WORK ONSITE AS NEEDED AND PERFORM LOCAL ADMINISTRATIVE TASKS WITHING THE STATE OF SOUTH CAROLINA.

PRIMARILY ASSIST IN THE PLANNING, DESIGN, DEPLOYMENT AND OPERATIONAL SUPPORT OF ENTERPRISE SECURITY PLATFORMS, INCLUDING:
CRIBL DATA MODELING AND LOG PIPELINE INGESTION
SECURITY INFORMATION AND EVENT MANAGEMENT (SIEM)
ASSIST WITH DESIGN AND CONFIGURATION OF LINUX BASED SECURITY SENSORS AND ENDPOINT MONITORING TOOLS

SECONDARILY ASSIST IN THE PLANNING, DESIGN, DEPLOYMENT AND OPERATIONAL SUPPORT OF ENTERPRISE SECURITY PLATFORMS, INCLUDING:
EXTENDED DETECTION AND RESPONSE (XDR)
VULNERABILITY MANAGEMENT PLATFORMS AND PROCESSES
DATA LOSS PREVENTION (DLP) SOLUTIONS
SECURITY AWARENESS AND TRAINING PLATFORMS

COLLABORATE WITH SECURITY ARCHITECTS TO DESIGN AND IMPLEMENT ENTERPRISE SECURITY SOLUTIONS THAT ALIGN WITH LEADERSHIP S BUSINESS GOALS, REGULATORY REQUIREMENTS AND ORGANIZATIONAL RISK TOLERANCE.
DESIGN, DEPLOY AND MANAGE COUNTERMEASURES TO ADDRESS KNOWN SECURITY THREATS AND CONTRIBUTE TO MITIGATION STRATEGIES FOR EMERGING THREATS TO ENTERPRISE DATA, SYSTEMS AND SERVICES.
ENSURE CONSISTENT APPLICATION OF SECURITY CONTROLS ACROSS ENTERPRISE INFRASTRUCTURE AND APPLICATIONS; VALIDATE CONTROL EFFECTIVENESS AND RECOMMEND IMPROVEMENTS.