Job Description :
IT Security Analyst 3
Dimondale, MI
12 Months
Need Locals
Job Description:
Monitor and advise on information security issues related to the systems and workflow at an agency to ensure the
internal IT security controls for an agency are appropriate and operating as intended.
Member of the Michigan Security Operations Center (MiSOC) and will focus on Incident Response.
Identify security issues and risks associated with security events and manage the incident response process.
Participate in the incident response and investigation process for identified security events.
Use the Security Incident Event Management (SIEM) platform (IBM’s QRadar) to perform Incident Response
identification and response.
Perform network and system forensics in response to security incidents.
Optimize and customize security-monitoring tools to improve detection.
Hunt for signs of APT activities.
Maintain and update the security operational workflow.
Required Skills:
In-depth knowledge of security monitoring and incident response
Knowledge of conducting security investigations.
Experience with using and customizing SIEM products
Solid understanding of network protocols and architecture
Demonstrated experience with performing digital forensics and incident response using industry leading tools.
Experience with network intrusion detection and analysis tools such as Bro, Suricata, Sourcefire, Snort and Wireshark
Demonstrated experience operating information security tools is required.
Understanding of the tactics, techniques and procedures of advanced attackers
SANS Training
CISSP
3-5years of experience in Security Operations and Incident Response