Overview
Remote
Full Time
Skills
SOC
Security operations
Monitoring
SIEM
SOAR
Defender
Setinel
Software development life cycle
SDLC
Snowflake
Datagaps
Github
Azure
Cyber security
Azure Security
Microsoft
SaaS
IaaS
Security operations center
Job Details
This is a great remote job opportunity to support the Department of Justice!
Will need to obtain a Public Trust for the position.
Job Description:
Enforces application security in all phases of the software development life cycle. Works closely with team members to define application security best practices, performs software architecture and design reviews, and supports the identification, interpretation, and remediation of vulnerabilities across a variety of applications, programming languages, and platforms.
- Manage and Monitor Sentinel (SIEM/SOAR) and Defender.
- Cyber Incident Response.
- Develop and Execute Tier 1 and Tier 2 Security Operations Center (SOC) / Monitoring Standard Operating Procedures (SOP).
- Manage security events data within Microsoft SaaS and IaaS environments.
- Monitor, Detect, and Respond to Security Events / Incidents.
- Generate, review, and brief security events and posture information.
- Familiar with Azure Security Architecture and Controls (or will complete courses / certification).
- Identify necessary improvements and work with Engineering to have them implemented, then test.
- Update Connections to Signals as needed (Snowflake, Datagaps, Github, etc).
- Alerts updated.
- Audit resource logging to insure everything is being monitored.
- Work with AO SOC on log shipping and notifications on Incidents.
Minimum Qualifications
- Bachelor's Degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience. Master's Degree preferred.
- 8-15 years of experience in Cyber Security and working in a SOC.