AustinRecruiter Since 2001
the smart solution for Austin jobs

Security Analyst Tier 2

Company: Apex Systems
Location: Austin
Posted on: March 27, 2020

Job Description:

Security Analyst (Tier 2) Candidate Description The preferred candidate will have a total of 5 years' experience in the Information Technology Information Security industry, with minimum of 2 years of experience as a Security Analyst utilizing SIEM technologies. Candidate should have strong communications skills, both written and verbal, be comfortable communicating with teammates, customer technical personnel and client Leads and Managers. This is an analyst role and candidate must be able to demonstrate ability to provide support to the Tier 1 Security Analysts, taking calls during high-volume times, assist in customer service status calls and with other communication such as notifications and escalations. Demonstrated experience in using the Splunk Enterprise Security SIEM technologies as an analyst is preferred. Holding the Splunk Power User Certification is preferred. Holding Certified Ethic Hacker (CEH) andor Certified Incident Handler (GCIH or ECIH) credentials is a plus for this position. This position is based in AUSTIN, TX, and will support the customer's 24x7 Security Operations Center (SOC). This position is in direct support (on-site at customer facilities) of a customer in the government sector. Our client is providing Managed Security Service Provider (MSSP) functions related to the Security Operations Center (SOC) including Tier 1 through Tier 3 resource capabilities and activities related to security monitoring, threat, and vulnerability management and incident response (IR). Preference will be made for candidates who can support 'non-business hour' shifts. Selected candidates must be Those authorized to work in the United States without sponsorship are encouraged to apply.s, pass a CJIS background check process, and complete basic safety and security training to meet the customer requirements. Responsibilities Document and escalate incidents (including event's history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment. Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack. Provide daily summary reports of network events and activity relevant to cyber defense practices. Receive and analyze network alerts from various sources within the enterprise and determine possible causes of such alerts. Provide timely detection, identification, and alerting of possible attacksintrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities. Recommend computing environment vulnerability corrections. Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings). Validate intrusion detection system (IDS) alerts against network traffic using packet analysis tools. Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave. Assists in developing cybersecurity recommendations to leadership based on significant threats and vulnerabilities. Pick up service tickets within established SLAs and escalate to Tier Three as needed. Provide guidance and mentorship to Tier 1 service desk personnel. Contribute to the creation of process documentation and training materials. Be able to work a rotating on-call schedule as required. Qualifying Experience and Attributes Three (3) to five (5) years of Security Incident Response and threat analysis experience. Working knowledge of Intrusion Detection Systems (all 4 types preferred host-signature, host-behavioral, network-signature and network-behavioral based). Holding the Splunk Power User Certification is REQUIRED. Experience with one or more SEIM McAfee ESM, Snort, Cisco, Dragon, NFR, Manhunt, etc. Experience working with IDSIPS such as Trend Micro TippingPoint. Able to use the internet to do research on events of interest. Familiar with the cyber kill chain. Three (3) to five (5) + years of Security experience working with Windows UNIX Mainframe based systems, routers and Ethernet switches. Working knowledge of system administration, network, and operating system hardening techniques. Working knowledge of cybersecurity and privacy principles. Working knowledge of cyber threats and vulnerabilities. Working knowledge of Intrusion Response in the form of day-to-day network traffic analysis and threat assessmentimpact analysis. Familiarity with encryption algorithms, cryptography, and cryptographic key management concepts. Knowledge of hostnetwork access control mechanisms (e.g., access control list, capabilities lists).? Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).? Knowledge of incident response and handling methodologies.? Prior training in concepts of network and systems operations. Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).? Knowledge of TCPIP - addressing, routing protocols, and transport protocols (UDP and TCP), Dynamic Host Configuration, Domain Name System (DNS), and directory services. Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol TCP and Internet Protocol IP, Open System Interconnection Model OSI, Information Technology Infrastructure Library, current version ITIL). Knowledge of escalation, incident management and change management processes and procedures of the SOC. Proficient in the operation and use of sophisticated diagnostic tools (i.e. Sniffer, RMON tools, etc.). Understands vendor and industry standards and procedures for their respective technical specialty. Possess good communication and interpersonal skills. Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).? Familiarity with key concepts in security management (e.g., Release Management, Patch Management). Knowledge of adversarial tactics, techniques, and procedures. Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).? Familiarity with network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). Signature implementation impact for viruses, malware, and attacks.? Proficient in performance of packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump). Those authorized to work in the United States without sponsorship are encouraged to apply. and must be able to pass background check(s) EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at employeeservicesapexsystemsinc.com or 844-463-6178.

Keywords: Apex Systems, Austin , Security Analyst Tier 2, Professions , Austin, Texas

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Professions Jobs


Truck Driver CDL A - Lease Purchase
Description: OTR Lease Purchase - Take home up to 65 of the load With our Lease Purchase offering, Drive Like a Boss with Dart for no money down today Dart is offering an unbeatable
Company: Dart Transit Company
Location: Lexington
Posted on: 04/7/2020

Sr Programmer Analyst II (Bioinformatics)
Description: Company Name: PPD Development, L.P. Position Title: Senior Programmer Analyst II Bioinformatics Hours: Monday- Friday, 8:00 AM to 5:00 PM Location: 7551 Metro Center Drive, Suite 300, Austin, TX 78744 (more...)
Company: PPD
Location: Austin
Posted on: 04/7/2020

CDL-A Company Team Drivers: New Hire Bonus
Description: Job Description: Class A CDL Team Drivers Needed Company Team Drivers Who Can Run 22,000 Miles per Month Call us today at 866 995-0537 Or apply online below Artur Express is looking for W-2 paid, CDL (more...)
Company: Artur Express
Location: Austin
Posted on: 04/7/2020


Food Research and Development Technician
Description: Food Research and Developement TechnicianSummary of Position br br Kelly Services is seeking a Product Developer to evaluate vendor-proposed product samples for new and existing food products and (more...)
Company: Kelly Services
Location: Austin
Posted on: 04/7/2020

Senior Management Consultant Financial Services
Description: WHAT YOULL GET TO DO:Deliver exceptional service and strategic value to our clients at 75-80 billable timeCultivate strong culture and communities within the market and across our Financial Services (more...)
Company: Point B
Location: Austin
Posted on: 04/7/2020

CDL-A Owner Operator Truck Driver
Description: CDL-A Owner Operator Truck Driver Jobs Take Advantage of Industry-Leading Pay br br In 2019, our leading solo drivers earned over 200,000/year in gross earnings br br Own your personal trucking (more...)
Company: UPS
Location: Leander
Posted on: 04/7/2020

Truck Driver CDL A - Lease Purchase
Description: OTR Lease Purchase - Take home up to 65 of the load With our Lease Purchase offering, Drive Like a Boss with Dart for no money down today Dart is offering an unbeatable
Company: Dart Transit Company
Location: Elgin
Posted on: 04/7/2020

Artificial Intelligence, Consultant - Applied Artificial Intelligence
Description: AI Consultants will Architect, Position, Design, Develop and Deploy enterprise solutions which include components across the Artificial Intelligence spectrum such as Chatbots, Virtual Assistants, Machine (more...)
Company: Deloitte
Location: Austin
Posted on: 04/7/2020

Class A CDL Truck Driver - Avg. of $55K-60K. Guaranteed Minimum Availa
Description: TEMPLE, TX2828 Industrial Blvd., Temple, TX 76501CDL-A DELIVERY DRIVERAverage Of 55,000 To 60,000. Guaranteed Minimum AvailableABOUT THE JOB Operate a tractor
Company: McLane Company
Location: Holland
Posted on: 04/7/2020

Truck Driver CDL A - Lease Purchase
Description: OTR Lease Purchase - Take home up to 65 of the load With our Lease Purchase offering, Drive Like a Boss with Dart for no money down today Dart is offering an unbeatable
Company: Dart Transit Company
Location: Florence
Posted on: 04/7/2020

Log In or Create An Account

Get the latest Texas jobs by following @recnetTX on Twitter!

Austin RSS job feeds