Job ID: SC-10794 (914190504)

Remote Security Analyst/Architect (CISSP/CISA/CISO/CEH/OSCP/GPEN) with SOAR, Python/Bash/PowerShell, REST API, JSON, YAML, MITRE ATT & CK Framework, CORTEX XSOAR Platform, SIEM experience

Location: Columbia, SC (Department of Administration (Admin))
Duration: 12 Months

REQUIRED EDUCATION/CERTIFICATIONS:
•     BACHELOR’S DEGREE IN AN INFORMATION TECHNOLOGY OR INFORMATION SECURITY RELATED FIELD
•     EIGHT YEARS OF RELEVANT WORK EXPERIENCE MAY BE SUBSTITUTED IN LIEU OF EDUCATION
•     FIVE YEARS OF EXPERIENCE IN SUPPORTING LARGE IT ENVIRONMENTS AND/OR SYSTEM DEPLOYMENTS
•     5+ YEARS OF EXPERIENCE WITH AUTOMATION PLATFORMS OR SOAR SOLUTIONS.
•     STRONG SCRIPTING AND AUTOMATION SKILLS (PYTHON, BASH, POWERSHELL, OR SIMILAR).
•     UNDERSTANDING OF REST APIS, JSON, AND YAML.
•     FAMILIARITY WITH MITRE ATT & CK FRAMEWORK
•     EXPERIENCE IN WORKING IN MULTI-TENANCY ENVIRONMENT; EXPERIENCE IN MULTI-AGENCY OR ENTERPRISE SERVICE PROJECTS.

PREFERRED EDUCATION/CERTIFICATIONS:
•     CISSP, CISA, CISO OR EQUIVALENT ADVANCED SECURITY CERTIFICATION.
•     ADDITIONAL RELEVANT CERTIFICATIONS (E.G., CEH, OSCP, GPEN).
•     VENDOR CERTIFICATIONS IN SOAR OR AUTOMATION TECHNOLOGIES.

PREFERRED EDUCATION/CERTIFICATIONS:
•     CISSP, CISA, CISO OR EQUIVALENT ADVANCED SECURITY CERTIFICATION.
•     ADDITIONAL RELEVANT CERTIFICATIONS (E.G., CEH, OSCP, GPEN).
•     VENDOR CERTIFICATIONS IN SOAR OR AUTOMATION TECHNOLOGIES.

ADDITIONAL SKILLS/DUTIES:
•     EXPERIENCE WITH DASHBOARD CREATION AND REPORTING.
•     EXCELLENT COMMUNICATION AND CUSTOMER SERVICE SKILLS FOR AGENCY-FACING ENGAGEMENT.

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
•     EXPERIENCE CREATING AUTOMATIONS WITHIN THE CORTEX XSOAR PLATFORM.
•     KNOWLEDGE OF SECURITY MONITORING USE CASES AND INCIDENT RESPONSE SUPPORT.
•     RESOURCES LOCAL TO COLUMBIA, SOUTH CAROLINA OR SURROUNDING CITY IN SOUTH CAROLINA ARE PREFERRED

DAILY DUTIES / RESPONSIBILITIES:
PREFERENCE WILL BE GIVEN TO A CANDIDATE WHO CAN WORK ONSITE OVER HYBRID AND OVER FULL-TIME REMOTE (ON-SITE AS NEEDED).

•     PROVIDE TECHNICAL EXPERTISE AND EXPERIENCE IN CREATING EFFICIENT AUTOMATION WORKFLOWS.
•     DEVELOP, IMPLEMENT AUTOMATIONS AND OPTIMIZE EXISTING AUTOMATIONS IN RESPONSE TO SECURITY ALERTS AND INCIDENTS.
•     BUILD AND MAINTAIN INTEGRATIONS WITH THE SOAR PLATFORM.
•     CREATE CUSTOM SCRIPTS WHEN REQUIRED TO PROVIDE FUNCTIONALITY NOT SUPPORTED OUT OF THE BOX INTEGRATIONS.
•     DOCUMENT PROCESSES, RUNBOOKS, AND TROUBLESHOOTING STEPS RELATED TO THE SOAR AND INTEGRATIONS.
•     PROACTIVELY COORDINATE WITH ENGINEERING, SOC, AND IR SUPPORT AS NEEDED TO MEET GOALS.
•     OTHER DUTIES AS NEEDED.

SC_E-RTR updated.docx

SCMSP_Candidate_Cover_Sheet_Updated.docx

Remote Security Analyst/Architect (CISSP/CISA/CISO/CEH/OSCP/GPEN) with SOAR, Python/Bash/PowerShell, REST API, JSON, YAML, MITRE ATT & CK Framework, CORTEX XSOAR Platform, SIEM experience

Leave a Reply

Your email address will not be published. Required fields are marked *

Discover more from innoSoul

Subscribe now to keep reading and get access to the full archive.

Continue reading