Job Searchi - jobSearchi.com

Job Details

ID #5273753
Estado Wisconsin
Ciudad Brookfield
Tipo de trabajo Permanent
Salario USD TBD TBD
Fuente Genesis10
Showed 2020-10-28
Fecha 2020-10-27
Fecha tope 2020-12-25
Categoría Seguridad
Crear un currículum vítae

Junior Security Analyst

Wisconsin, Brookfield, 53005 Brookfield USA

Vacancy caducado!

Genesis10 is looking for a Junior Security Analyst for a 6+ month contract with potential for extension or conversion in either the Atlanta, GA or Charlotte, NC area.

Purpose Our client is partnering with a Financial Services partner to help grow their existing security team. This role is looking for a Junior Security Analyst with 1+ years of security experience to join their existing team and continue to build and grow their security team for the long run.

Key Responsibilities Must be able to follow directions, take good notes, and follow through on anything that raises additional questions (log entries implicating another system to investigate, missing procedure steps that need filled in, lack of an owner's response to a vulnerability finding, etc.). Candidates are not expected to have experience with all the following, but we are looking for someone who can learn quickly, will take ownership, and have can-do attitude to implement/perform these tasks:

Control Analysis
  • Analysis of report data to produce metrics related to security controls
    • Using scripts (such as PowerShell or SQL queries) or export utilities to gather relevant data
    • Using various software (such as Excel or NotePad) to sort, filter, format, and compare data to determine software coverage gaps, control compliance, etc.
    • Produce lists for recommended remediation (list of systems to be upgraded, software requiring install, account passwords to be reset, etc.)
      • Examples, systems missing Red Cloak, unreachable (potentially decommissioned) systems, detected systems with no documentation
  • Review of specific control implementation
    • Examples:
      • List of systems detected with a specific EOL software
      • List of systems with a configuration vulnerable to a specific threat (given factors such as ports or software version required for exploit)
      • Accounts without an assigned owner
  • General reporting
    • Examples:
      • VMS Exceptions by CGTicket
      • VMS Top 20 reporting
      • ChangeGear tickets by type and time period (firewall changes for quarterly audit, security incidents compare to SecureWork incidents).
      • Firewall rule usage

Log Review
  • Log analysis as part of project research or incident response
    • Export and analysis of firewall logs to determine network connectivity issues (given source, destination, port, is traffic blocked, allowed, or not present, etc.)
    • Review of security event data through multiple systems (AV, web-filter, email defense, etc.) to identify the source of malicious files or traffic
    • Review of blocked traffic or rule usage reports to determine potential tuning recommendations

Documentation
  • Procedure development and validation
    • Help formalize and mature procedures by stepping through various processes to test documentation and raise questions
  • Build security system configuration documentation
    • Gather screenshots, current setting values, firewall object definitions, etc. and compile into a structured document.

Operations
  • Routine Change Management
    • Submit documentation and manage tickets for MSSP managed upgrades or other standard low-risk changes.

Compliance
  • Communicating with system owners to gather various audit data:
    • Requesting additional documentation on discovered assets (additions to the IP Addresses or CMDB)
    • Follow-up on requests (expiring VMS exceptions, overdue remediation tickets, incomplete documentation)

Support / Troubleshooting
  • Respond to questions and requests related to security operations such as:
    • Questions about blocked or allowed traffic, or current firewall rule-sets.
    • Research about patch applicability or vulnerability mitigations
    • Testing addresses/URLs against current rules or vendor reputation
    • Basic modifications to allow-lists, firewall rules, or AV exceptions

Job Requirements
  • 1+ years of helpdesk experience
  • Exposure to networking and security support
  • Exposure to server and systems support
  • Exposure to Active Directory and ID management systems
  • Interest in security operations
  • Strong analytical skills
  • Reasonable communication

About Genesis10: Genesis10 is a leading U.S. business and technology consulting firm with hundreds of clients needing proven talent and solutions to power their strategic initiatives. If you are a high performing business or IT professional with solid, referenced experience, we want to meet you. Genesis10 recruiters and delivery professionals are highly accomplished career advocates, who get to know you beyond your resume to position you with the opportunities that fit your skills, experience and aspirations.cl We have benefit options to fit your needs and a support staff that works with you from placement throughout your engagement project after project. To learn more about Genesis10 and to view all our available career opportunities, please visit us at www.genesis10.com . "Genesis10 is an Equal Opportunity Employer, M/F/D/V

Vacancy caducado!

Suscribir Reportar trabajo