01 Jan
Cyber Security Analyst- Incident Response
Vacancy expired!
ClientSolv Technologies is an IT solution firm with over a decade of experience serving Fortune 1000 companies, public sector and small to medium sized companies. ClientSolv Technologies is a woman-owned and operated company that is certified as a WMBE, 8a firm by the Federal government's Small Business Administration. We are seeking a Cyber Security Engineer with Incident Response experience for a long term contract opportunity
(multi-year initiative) in Atlanta, GA. The Cyber Security Engineer - Incident Response and Security Operations will monitor all networks, IPS\IDS 's, and security tools for network intrusions, unauthorized access and other indicators of compromise. Additional responsibilities for this role are as follows:- Perform incident investigations and initiate incident notification, case tracking/management and recovery actions, perform troubleshooting and problem resolution on internal security equipment and systems.
- Participate in all incident response (IR) efforts; detect, identify, respond, contain and remediate all information security incidents.
- Perform real-time and alert monitoring of network tools (IDS, IPS, HID, firewalls) and analyzing both raw (management consoles) and processed security event data (SIEM) to identify potential security incidents, threats and vulnerabilities to help improve log data and develop additional use cases for further improving tools and detection. Assist with research and distribute cyber threat intelligence to protect all company networks.
- Provide information security metrics and key performance indicators (KPI's). Participate in Incident Response and Security Operations Team.
- Monitor company networks and Security Information Event Monitoring (SIEM) tools to identify Indicators of Compromise (IOC’s)
- Respond to incidents as necessary and provide 3rd level support to junior team members
- Detect, respond, identify, contain and remediate all information security incidents
- Receive and distribute cyber threat intelligence to protect all company networks
- Assist in defining and building the incident Response and Security Operations program under the office of Information Security
Vacancy expired!