- Partner with non-technical and technical individuals to track, document, and report incidents.
- Perform management and configuration of endpoint protection systems.
- Provide audit record reduction and report generation to support on-demand analysis and reporting.
- Monitor security controls on an ongoing basis to ensure the continued effectiveness.
- Configure and monitor logging systems including a Security Information & Event Management (SIEM) system.
- Receive and respond to cyber threat intelligence from information sharing forums and sources and communicate to stakeholders.
- Monitor system security alerts or advisories and remediate findings.
- Help develop and maintain procedures for security incident response program.
- Requires BS Degree (or equivalent experience) in an Information Technology or Computer Science field and/or at least 10 years’ experience performing analysis, troubleshooting of complex situations, and making recommendations for Information Security.
- Certifications in one or more of the following: Certified Information Security Professional (CISSP), Offensive Security Certified Professional (OSCP), or Global Information Assurance Certification (GIAC).
- Able to independently gather appropriate technical details of suspicious events and determine appropriate action.
- Ability to organize and track events, interpret findings, and communicate with technical and non-technical resources.
Candidates should also have:
- Experience in one or more of the following disciplines: Information Security monitoring, incident response, vulnerability management, business continuity, or threat intelligence.
- 2+ years of managing a Security Information & Event Management (SIEM) solution.
- Knowledge and understanding of the following frameworks or regulations: NIST 800-53, NIST 800-171, CMMC, and MITRE ATT&CK.
- Knowledge and understanding of data security controls related to endpoint protection, firewalls, intrusion detection systems/intrusion prevention systems, email & web content filtering.
- Excellent written and verbal communication skills. Demonstrated success writing and summarizing technical events.
- LAN/WAN and Network Security experience.
US Citizenship or permanent residency is required.
Company Overview
We believe that creating and sustaining a culture of trust, integrity and professional growth fundamentally includes a sustained commitment to Diversity, Equity, and Inclusion. At Jensen Hughes, diversity is ingrained in our culture - we accept people for who they are, regardless of age, disability, gender identity, gender expression, marital status, mental health, race, faith or belief, sexual orientation, or socioeconomic background. Our differences and uniqueness are celebrated and reflected in our wide range of Global Employee Networks.
#LI-KV1