Job Description :

Job Title: Security Consultants

Location: Manhattan/Brooklyn (Onsite- Day One )

Duration: 10+ mth+ contract

Job Description:

  • Ability to be onsite at PD 5 days a week
  • They will be supporting their Security Team which is compromised of the following and they will be expected to be engaged with:
  • Incident response and their Security Operations Center (SOC) – assist with following up on incidents that may be discovered in their environment.
  • Threat Intelligence – work with them to obtain threat intelligence from external resources
  • Vulnerability Management Team – work with them to review vulnerability scan findings and prioritize remediations to be assigned
  • Security Architecture engineering – architecture reviews of new systems NYPD is considering to include the ability to review changes to firewall rules to accommodate the new system, potential vulnerabilities that may be known of the new system but would have to be researched, etc.
  • In addition, the individual should have experience with SIEM tools
  • NYPD is currently using “Phantom” SIEM which is now part of Splunk, so experience there is good
  • Should be able to assist with Orchestrating in SIEM, which means aid in automating the tasks associated with responding to security events by building playbooks
  • Azure experience, the NYPD has an Azure tenant and experience with that would be necessary.
  • At a minimum the ideal candidate would be able to look a network diagram that shows ports that would be needed for a system and be able to explain why the port could be a risk to their environment, examples would be:
  • Port 3389 is RDP and why that could be a risk to open it for inbound connections from the internet to a device in their DMZ
  • Port 21 is FTP, if a request to add an inbound connection to an FTP server is being made from the internet to an internal device perhaps they should use Port 22 which is for Secure FTP or SFTP]]
  •  
             

Similar Jobs you may be interested in ..