Job Details
Our client is a large non-profit healthcare system based in North Carolina. This is a great opportunity to join their security operations team and expand your security skillset. The ideal candidate will be interested in growth and learning new skills and technologies.
All candidates must currently be based in one of the following states: Alabama, Arkansas, Florida, Georgia, Indiana, Iowa, Kansas, Kentucky, Louisiana, Michigan, Missouri, North Carolina, Ohio, South Carolina, Tennessee, Texas, or Virginia
Responsibilities:
80% Security Operations
- Maintain and tune security products (SIEM and EDR solutions)
- Monitor system events, logfiles and alerts: operating system, firewall, SIEM, IDS/IPS, and EDR.
- Analyze network security alerts and events: logfile, packet captures, and flows and flowrates.
20% Incident Response
- Respond to incidents involving Business Email Compromise (BEC)
- Respond to incidents involving malware: extract malware and analyze malware
- Respond to network based attacks: denial of service, web application attacks, email and phishing attacks, and network infrastructure attacks
- Perform incident detection: endpoint incidents, network incidents, and anomalous events (misconfiguration and misuse)
- Member of a CSIRT (Computer Security Incident Response Team)
Requirements:
- 3-5 years of Security Engineering experience, including maintaining and tuning security solutions.
- Strong experience responding to incidents, including analyzing packet captures and extracting malware.
- Must have an active CEH, CSIH, GCFA, GCIH, CAP, CISM, SSCP or similar certification.
- At this time, our client is only able to hire US Citizen or Green Card Holders.
Why CyberSN?
CyberSN is the Cybersecurity Jobs and Career Marketplace. From online matching to full-service recruitment, CyberSN provides professionals and hiring teams with the expertise, information, tools, connections, and services they need to maximize career success, job satisfaction, team performance, diversity, and retention.