Request ID:BL-9824-1 (99590429)
Security Analyst with SIEM, EDR IPS/IDS, SQL, C/C++, Red Team, Blue Team, Python, PowerShell, O365 security, SOC, Log Analyst experience and Security+/CySa+/Pen+/CASP+/CEH/SSCP/CCSP/CISSP certification
Location:Columbia, SC
Duration:12 Months Hrs/Wk:40.00
SCDSS – Security Disclosures *MANDATORY FOR ALL DSS Requests*
REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
• SIEM, EDR IPS/IDS Experience
• Incident Response Experience
• Security Documentation
• SQL
• C/C++
• Red Team experience
• Blue Team experience
• Python
• Powershell
• Office 365 Security Administration
PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
• Preference will be given to experienced Security Operation Center (SOC) security analyst.
• SIEM/Log Analyst experience.
• SQL/Scripting (reports and automation) experience.
REQUIRED EDUCATION/CERTIFICATIONS:
Bachelors or higher degree in Computer Science or other quantitative discipline
PREFERRED EDUCATION/CERTIFICATIONS:
Any of the below.
• Security+
• CySa+
• Pen+
• CASP+
• CEH
• SSCP
• CCSP
• CISSP
Experience
Database PlatformsMS SQLYes1LeadCurrently Using6 + Years
Network SecurityAbility to install and use various security toolsYes1LeadCurrently Using6 + Years
Network SecurityIRS Safeguard Computer Security Evaluation Matrix (SCSEM)Yes2ExpertWithin 6 Months2 – 4 Years
Network SecuritySecurity – Knowledge in networking, databases, systems and Web operationsYes2ExpertWithin 6 Months2 – 4 Years
Network SecuritySecurity Information Event Management (SIEM) systems development / configurationYes1LeadCurrently Using6 + Years
Network SecurityApplication SecurityNo3AdvancedWithin 1 Year2 – 4 Years
Network SecurityCybersecurityNo3AdvancedWithin 1 Year2 – 4 Years
Network SecurityIT SecurityNo3AdvancedWithin 1 Year2 – 4 Years
Network SecurityPenetration TestingNo5IntermediateWithin 2 Years< 1 Year
Network SecurityWindows Security – PrivilegesNo4IntermediateWithin 2 Years1 – 2 Years
Networking & DirectoriesINCIDENT MANAGEMENTYes1LeadCurrently Using6 + Years
Networking & DirectoriesInformation SecurityNo3AdvancedWithin 1 Year2 – 4 Years
Networking & DirectoriesNetwork securityNo3AdvancedWithin 1 Year2 – 4 Years
Operating Systems/APIsPowerShellNo4EntryWithin 1 Year< 1 Year
Packaged ApplicationsMS OFFICE 365Yes2ExpertCurrently Using2 – 4 Years
Programming LanguagesC/C++Yes2LeadCurrently Using2 – 4 Years
Programming LanguagesPythonNo4EntryWithin 1 Year< 1 Year
SpecialtiesNIST SecurityYes1LeadCurrently Using6 + Years
Remote Work Availability:0%
Position Description – Systems Software Programmer – Project Lead
Candidate should be an expert security administration and security continuous monitoring. In addition, they should be an expert in performing log analysis, risk analysis, incident response processes, and investigation procedures. This includes experience working in a security operations center and working with security tools including SIEM, EDR, IPS/IDS. Candidate should have experience with data blending and report generation.
Job Duties
• Planning, implementing, upgrading, and monitoring security measures for the protection of computer network security and information – both LAN and cloud based.
• Develop and maintain policies and procedures related to information security and privacy.
• Monitoring and reporting on SIEM and EDR event data.
• Maintaining records of security events investigated and incident response activities.
• Serve as a Tier III security support on the agency’s security team.
• Work with and provide mentorship to other information security team members on security strategies, processes, response, and technologies.
• Responding to computer security breaches and viruses.
• Provides incident response support, threat assessment, and computer forensic investigations.
• Coordinate and assist with other Information Technology functions/teams to accomplish agency security objectives
• Creating risk analysis documents when reviewing system functional specifications including use cases, activity, sequence, data flow, collaboration, and diagrams.
• Create security report using complex SQL queries, API integrations, and Power BI.
• Knowledge of blue team tools such as SCAP workbench, vulnerability scanning, and hardening techniques.
• Knowledge of red team tools such as nmap, wireshark, Metasploit, and password crackers.
SCDSS-DTS Contractor Security Disclosures MANDATORY (3).docx