Thursday, September 14, 2017

Security Analyst

Title : Info Security Analyst – Int.
Location: Broomfield, CO
Duration: 06-12 Months
Role Summary (overall purpose and objectives of role):  
The incumbent will be responsible for triaging and validating security events.  In addition, the incumbent will be responsible for proactively hunting and seeking for unidentified threats in the environment.  Secondary duties will consist of operationalizing new – and tuning existing – security solutions to ensure that only actionable data are escalated as security events.
All candidates for this role must be open to shift work as this is a 24x7 environment. Specific shifts will be discussed with each candidate to determine specific hours and days.
Responsibilities (List principle tasks, duties and responsibilities of the job):
  • Respond to network and host based security events
  • Minimize the dwell time of threat actors by monitoring, triaging, and validating security events, while maintaining thorough documentation in the case management system
  • Operate with little-to-no direction and define relationships between seemingly unrelated events through deductive reasoning
  • Actively hunting for and dissecting previously unidentified threats in the environment
  • Participate in intelligence sharing and trust groups, then apply this knowledge to security controls
  • Develop and maintain standard operating procedures to reflect day-to-day security operations
  • Create innovative in-house control capabilities to assist in the automation of existing security operations functions
  • The role is involved in projects or issues of high complexity that require in-depth knowledge across multiple technical areas and business segments
Required Skills (Minimum knowledge, skills and abilities to enter the job):
  • Minimum of 1-3 years of experience within the IT field
  • Exceptional written and oral communication skills
  • Strong critical thinking and analytical skills
  • Attention to detail
  • Experience handling security incidents, to include reviewing raw log files, data correlation, and analysis
  • Experience with and thorough understanding of attack vectors, threat tactics, and attacker techniques
  • Able to proactively perform duties and responsibilities with little-to-no direction
  • Able to effectively and efficiently collaborate with a diverse and geographically distributed team
  • Must be willing and able to work a shift routine
  • Ensure successful handoff of procedures between shifts
Desired Skills (Preferred not required):
  • Bachelor's degree in computer science, information technology, or related field is required  
  • Experience with enterprise information security data management tools such as ArcSight or Splunk is preferred
  • Solid experience in scripting languages such as (or similar to) Python, PERL, and Ruby is a plus
  • Proficiency with RSA Archer
  • Experience with industry standard frameworks
  • Experience with YARA, regex, or other host/network-based signature development

Manoj Kar 
eTeam Inc
(732) 983-5603 Ext.534
1001 Durham Avenue, Suite 201
South Plainfield, NJ, 07080