RecruitTalent, LLC.
Senior Cybersecurity Analyst
RecruitTalent, LLC., Washington, District of Columbia, us, 20022
Responsibilities
Administer and maintain the logic for intrusion detection, prevention, and analysis platforms. Author and implement custom detection content for signature-based detection systems, security information and event management (SIEM) systems, host-based detection systems, and firewall logic. Monitor real-time network activity flagged by intrusion detection, prevention, and analysis platforms and analyze raw data, metadata, and event logs to confirm suspected intrusion attempts in local (on‑premises) or cloud computing systems. Investigate network anomalies and respond to cybersecurity incidents in local (on‑premises) or cloud computing systems, including all phases of the digital forensics and incident response process (e.g., preparation, scoping, containment, eradication, remediation, recovery, lessons learned, closeout). Implement and maintain a fully operational data loss prevention capability to prevent data loss from local (on‑premises) and/or cloud computing systems. Qualifications
At least five years of experience performing the functions associated with this labor category. Experience administering and maintaining the logic for intrusion detection, prevention, and analysis platforms designed to identify and counter intrusions as part of a defense-in-depth program for both local and cloud computing systems. Experience authoring and implementing custom detection content for signature-based detection systems, SIEM systems, host-based detection systems, and firewall logic. Experience monitoring real-time network activity and analyzing raw data, metadata, and event logs to confirm suspected intrusion attempts in local or cloud computing environments. Experience investigating network anomalies and responding to cybersecurity incidents across local and cloud environments, including all phases of the digital forensics and incident response process. Experience implementing and maintaining a fully operational data loss prevention capability on local and/or cloud computing systems. Certifications
Certified Information Systems Security Professional (CISSP) Certified Incident Handler (GCIH) GIAC Network Forensic Analyst (GNFA) GIAC Certified Forensic Analyst (GCFA) Equivalent Seniority level
Associate Employment type
Contract Job function
Information Technology Industries
IT Services and IT Consulting
#J-18808-Ljbffr
Administer and maintain the logic for intrusion detection, prevention, and analysis platforms. Author and implement custom detection content for signature-based detection systems, security information and event management (SIEM) systems, host-based detection systems, and firewall logic. Monitor real-time network activity flagged by intrusion detection, prevention, and analysis platforms and analyze raw data, metadata, and event logs to confirm suspected intrusion attempts in local (on‑premises) or cloud computing systems. Investigate network anomalies and respond to cybersecurity incidents in local (on‑premises) or cloud computing systems, including all phases of the digital forensics and incident response process (e.g., preparation, scoping, containment, eradication, remediation, recovery, lessons learned, closeout). Implement and maintain a fully operational data loss prevention capability to prevent data loss from local (on‑premises) and/or cloud computing systems. Qualifications
At least five years of experience performing the functions associated with this labor category. Experience administering and maintaining the logic for intrusion detection, prevention, and analysis platforms designed to identify and counter intrusions as part of a defense-in-depth program for both local and cloud computing systems. Experience authoring and implementing custom detection content for signature-based detection systems, SIEM systems, host-based detection systems, and firewall logic. Experience monitoring real-time network activity and analyzing raw data, metadata, and event logs to confirm suspected intrusion attempts in local or cloud computing environments. Experience investigating network anomalies and responding to cybersecurity incidents across local and cloud environments, including all phases of the digital forensics and incident response process. Experience implementing and maintaining a fully operational data loss prevention capability on local and/or cloud computing systems. Certifications
Certified Information Systems Security Professional (CISSP) Certified Incident Handler (GCIH) GIAC Network Forensic Analyst (GNFA) GIAC Certified Forensic Analyst (GCFA) Equivalent Seniority level
Associate Employment type
Contract Job function
Information Technology Industries
IT Services and IT Consulting
#J-18808-Ljbffr