Information Protection Senior Advisor

job summary:

Enterprise Healthcare client has an immediate opening for a highly motivated Information Protection Senior Advisor to join their dynamic and growing team. All qualified candidates are encouraged to apply!

Focus on signature performance, maintenance, testing, and the overall lifecycle management of signatures. Tune false positives and create EDR security content (validate duplicates, retire, governance, documentation).

location: Hartford, Connecticut

job type: Contract

salary: $69 - 79 per hour

work hours: 8am to 5pm

education: Bachelors



responsibilities:

• Work closely with IR, Hunt, Intel, Threat Hunt teams, review work intake and content that needs to be created or tune in EDR platforms (Tanium/CrowdStrike)

• Develop detections for Windows, Linux

• Create detections based on processes, malware analysis.

• Transform SIGMA, YARA rules as needed.

• Validate daily use cases and overall health of the system.

• Demo detections that will be going into production weekly and explain reasoning behind them.

• Focus on signature performance, maintenance, testing, and the overall lifecycle management of signatures. Tune false positives and create EDR security content (validate duplicates, retire, governance, documentation).

• Tune/Create EDR content based on CVEs, APTs, TTPs.

• Stay in tune with Cyber threat space (CVEs, APTs, TTPs)

• 70% creating/tuning content base on system processes (must have expertise knowledge of this)

• 20% Splunk detection engineering

• 10% Documentation

qualifications:

• Experience level: Manager
• Education: Bachelors

skills:

Splunk

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility).

Applications accepted on ongoing basis until filled.