Duties:
Collaborate and assist Security Operation Center (SOC) team in Event Monitoring, Incident Response, endpoint forensics, and Identification of potential security incidents.
Identify indicators of compromise (IOCs) from analyzing system logs, firewall logs, Network Intrusion Detection System (IDS) alerts, Host Intrusion Detection Systems (HIDS) alerts, Web Application Firewall (WAF) alerts, endpoint malware alerts, and other log sources/technologies.
Detect and triage security events and escalate incidents as required by SOC processes/playbooks.
Perform network forensic analysis (e.g.
Netflow and PCAP) to produce accurate threat detection rules (SNORT, YARA, etc.).
Analyze potential malicious files and payloads.
Analyze potential phishing and social engineering attempts.
Required Skills, Knowledge, Education and Certifications:
A passion and drive for Cybersecurity; and
A degree from an accredited college or university; or
Professional experience in cybersecurity, IT, public safety or related security development, or equivalent experience.
Preferred and Desired Skills
Cybersecurity professional certifications such as CEH, GCFE, GCFA, GCIH, GCIA, CISM, or CISSP.
Proficient with log analysis using log aggregators such as Splunk or Elastic, Security information and event management (SIEM) system, and various other security tools and services.
Demonstrated knowledge of the current cyber threat landscape, defenses, motivations, and techniques.
Familiar with the technical aspects of malware, botnets, and other malicious tools.
Familiar with the MITRE ATT&CKĀ® framework, Lockheed Martin Kill Chain, DNI Cyber Threat Framework, or other Cybersecurity frameworks.
Familiar in scripting or programming for popular languages such as: Javascript, Python, HTML
Proven record of exercising good judgment and professionalism in a fast-paced and/or intense working environment; strong writing and research skills.
Excellent communication skills and ability to work with the private sector, and department staff.
Job Types: Full-time, Contract
Pay: $55.00
– $80.00 per hour
Benefits:
Paid time off
Schedule:
8 hour shift
Monday to Friday
COVID-19 considerations:
Must be fully vaccinated prior to starting the position.
Experience:
Cybersecurity: 5 years (Preferred)
Work Location: One location