Address
Form of workRemote work from home
Overnight shift
Description:
Duties:
Conduct real-time analysis using Splunk, Orion, SIEM, Endpoint and Network based technologies, and other analytics tools with a focus on identifying network and security events
Conduct real-time monitoring of production jobs using Control-M
Corelate data points and pinpoint areas of concern
Handle NOC/SOC/Prod jobs tier 1 and Tier 2 events
Analyze potential incidents and escalate to a internal teams for further triage or analysis.
Helps to coordinate the reporting of network and data security incidents and may participate in investigations.
Monitor the company's security-related tools (for example, internal alerts relating to data access or external scans).
Identify potential risk issues and collaborate with internal teams to develop and execute corrective steps or remediation plans.
Provide clear summary of daily activities and hand-off to the resources for the following shift
Shift:
Friday 6:00pm - 2:00pm
Monday 10:00pm - 6:00am
Saturday and Sunday 7:00pm - 7:00am
Skills:
Network operations, soc, security operations, Ccna, Network monitoring
Additional Skills & Qualifications:
Requirements/Qualifications:
2-3 years' experience in IT related position
Certifications preferred: CCNA, GCIA (GIAC Certified Intrusion Analyst), GCIH (GIAC Certified Incident Handler), or similar
Experience performing daily system monitoring and health checks for various products (i.e., network, security, etc.)
Confident triaging alerts and reporting of incidents
Confident analyzing real traffic and associated artifacts: malicious, normal, and application traffic; and demonstrate the ability to differentiate malicious traffic from false positives
Ability to correlate data points and determine if an event or incident (i.e., security or network) has occurred
Experience and up-to-date with security best practices and hardening as it relates to protecting enterprise environments from the latest threat landscape
Understanding of how DNS works for both legitimate and malicious purposes
Understanding network protocols and traffic flow in an enterprise environment
The ability to communicate clearly with verbal and written skills
Must demonstrate a "can-do" attitude ; be self-motivated
Critical thinking and decision making
This position will matrix into Cybersecurity & Information Protection, Cloud and Platform Services and Data Integration Services.
About Us
Skiltrek is an award-winning IT staffing firm and the staffing partner of choice for many leading companies across the US. At Skiltrek, we promise you the perfect opportunity of building technical excellence, understand business performance and nuances, be abreast with the latest happenings in technology world and enjoy a satisfying work life balance.
Skiltrek is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender, race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, veteran or military status, or any other category protected under the law. Skiltrek is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.
