The IT Security Analyst performs a wide variety of security duties with a primary focus on monitoring for security compromises, security issues.
Duties and Responsibilities:
- Monitor and evaluate SIEM and other applications for compromise indicators
- Analyze indicators and triage events
- 1 response to breach/compromise indicators and other security related requests
- Perform 1 Malware/Breach/Compromise Analysis and remediation
- Log and document event responses per security operations procedures
- Monitor health of security applications
- Execute security processes/procedures/functions (and applications)
Required Skillsets:
- Experience/knowledge/expertise with the processes, functionality, administration and architecture of:
- SEIM tools (LogRhythm preferred)
- Enterprise antivirus products (Trend Micro, Carbon Black preferred)
- Network Security controls such as IDS/IPS, Firewalls, etc. Checkpoint preferred).
- TCP/IP and networking/system vulnerabilities
- Email security controls such as Proof Point, FireEye, etc.
- Email and Microsoft Exchange
- Windows PC operating systems
- Windows Server operating systems
- Windows Active Directory, including GPOs, Security Groups, User permissions, etc.
- SCCM
- Microsoft Office applications
- Experience/proficiency with administrative scripting languages (Powershell, VB, WMI, etc.)
- Familiarity with Sys Internals Suite
- Experience/knowledge/expertise with security incident processes
- Experience/knowledge/expertise with trouble isolation, log analysis, event correlation, and data analysis
Desired Academic & Professional Qualification
- Bachelors in Computer Science or Information Technology
- Desired Security Certifications): CCNA (Security/ CompTIA Security+ /RHCSS (Red Hat Certified Security Specialist/CEH/EHCE / SSCP (System Security Certified Practitioner) / CISM (Certified Information Security Manager/CISA (Certified Information Security Auditor)