Job Description :
Background:
Accountable for assisting the team to meet security deliverables and mandates. Maintain availability, and currency of server hardware and software, systems and peripherals. Perform other duties as specified by the Lead Engineers and Work Area Services manager.
Responsibilities:
Support of complex server environments, to include Citrix, VMware, server monitoring solutions, enterprise backup technologies, disaster recovery planning and execution, Active Directory, Exchange, Group policy, SAN technology, Imaging, DNS and Security.
Assist with the support of end user trouble tickets and support requests and close such tickets timely.
Assist and interface with internal and external customers on an ongoing basis to ensure installed systems and applications are performing as required to meet the business objectives of the FEPOC.
Application Whitelisting and Inventory
Have the capability to control what applications are permitted to execute on FEPOC computing devices and perform automated reporting and alerting on the use of unauthorized software.
Endpoint Malware Detection and Prevention
Have the advanced capability to detect and thwart advanced persistent threats and malware at FEPOC endpoints.
DNS Security
Capability to protect DNS from attacks such as DNS cache poisoning, DNS hijacking, and other DNS specific attacks and automatically reconfigure DNS to block bad domains based on threat intelligence.
Secure configurations for hardware and software (includes network)
Capability to scan FEPOC computing devices (workstations, servers, network devices) against defined secure (hardened) configurations and alert on violations.
Controlled use of administrative privileges
Capability to restrict access to administrative systems through the use of hardened “jump servers” system”
Security Event and Incident Response Coordination
Maturation of incident response capability by alignment of event response with CareFirst and BCBSA through more defined processes and exercises.
Two factor authentication internal
Implement use of two factor authentication when logging in internally to the network
Enterprise Network Access Control
Implement FEPOC specific ForeScout enterprise network access control system
Privileged Identity Management
Place elevated privileged accounts in Cyberark for password management
Understand application whitelisting with Carbonblack/Bit9.
Implement new security technologies/strategies using VMWare virtualization.
Participate in the review of current team processes and assist with developing and implementing solutions to automate manual processes.
Create and/or maintain and enhance team standard operation procedures; create project documentation for any projects assigned.
Required Qualifications
Strong Windows/Linux operating system skills to include the implementation of security best practices to harden systems, including patch management.
Strong understanding of Active Directory.
Strong understanding of VMWare.
Strong understanding of DNS & DHCP.
Strong understanding of Group Policies
Strong work experience with scripting languages such as PowerShell, Visual Basic, etc.
Understanding of operation system and application hardening
Understanding of best practices for restricting administrative accounts compromise.
Understanding of PKI infrastructure
Understanding of endpoint protection strategies
Understanding of basic network configurations to include TCP/IP, switches and VLans.
Interpersonal Skills
Excellent customer service skillset.
Excellent written, presentation and verbal communication skills.
Strong analytical/problem solving skills.
Ability to coordinate assigned tasks in line with department and company goals and objectives.