Title: Security Analyst - Project Lead
SIEM, EDR IPS, IDS
log analysis, risk analysis, incident response processes, investigation procedures, EDR event data
computer network security, computer network information, LAN, networks
Security Engineer – Project Lead
SCOPE OF WORK:
The client is responsible for securing and monitoring the client critical applications and network for the client department.
Seeking a highly motivated individual who has the skills and experience needed to support this mission in protecting the digital environment.
DAILY DUTIES / RESPONSIBILITIES:
Candidate should be an expert security administration and security continuous monitoring.
In addition, they should be an expert in performing log analysis, risk analysis, incident response processes, and investigation procedures. This includes experience working in a security operations center and working with security tools including SIEM, EDR,
Planning, implementing, upgrading, and monitoring security measures for the protection
of computer network security and information – both LAN and cloud based.
Develop and implement security policies, procedures, and standards to protect the
organization's data and assets
Monitoring and reporting on SIEM and EDR event data.
Maintaining records of security events investigated and incident response activities.
Serve as a Tier III security support on the agency’s security team.
Conduct security assessments of systems, networks, and applications to identify
vulnerabilities and risks.
Work with and provide mentorship to other information security team members on
security strategies, processes, response, and technologies.
Respond to security incidents and breaches, and work to mitigate the impact and prevent
Provides incident response support, threat assessment, and computer forensic
Coordinate and assist with other Information Technology functions/teams to accomplish
agency security objectives.
Creating risk analysis documents when reviewing system functional specifications
including use cases, activity, sequence, data flow, collaboration, and diagrams.
Create security report using complex SQL queries, API integrations, and Power BI.
Knowledge of blue team tools such as client AP workbench, vulnerability scanning, and
Knowledge of red team tools such as nmap, wireshark, Metasploit, and password
SIEM, EDR IPS/IDS Experience
Incident Response Experience
Red Team experience
Blue Team experience
Office 365 Security Administration
PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
Preference will be given to
experienced Security Operation
Center (SOC) security analyst.
SIEM/Log Analyst experience.
SQL/Scripting (reports and
Database Platforms --MS SQL Yes --1 --Advanced --Currently Using --4 - 6 Years
Network Security --Security Information Event Management (SIEM) systems development / configuration --Yes --1 --Advanced --Currently Using --4 - 6 Years
Operating Systems/APIs --PowerShell --Yes --1 --Advanced --Currently Using --4 - 6 Years
Programming Languages ----C/C++ --Yes --1 --Advanced --Currently Using --4 - 6 Years
Programming Languages --Python --Yes --1 --Advanced --Currently Using --4 - 6 Years
Travel may be required. Using the client vehicle.
Remote Work Availability: 25%
VIVA USA is an equal opportunity employer and is committed to maintaining a professional working environment that is free from discrimination and unlawful harassment. The Management, contractors, and staff of VIVA USA shall respect others without regard to race, sex, religion, age, color, creed, national or ethnic origin, physical, mental or sensory disability, marital status, sexual orientation, or status as a Vietnam-era, recently separated veteran, Active war time or campaign badge veteran, Armed forces service medal veteran, or disabled veteran. Please contact us at for any complaints, comments and suggestions.
Contact Details :
VIVA USA INC.
3601 Algonquin Road, Suite 425
Rolling Meadows, IL 60008