Security Risk Assessment Specialist​/Security Analyst

Security Risk Assessment Specialist/ Security Analyst

Mindlance is a national recruiting company which partners with many of the leading employers in the Life Sciences, IT, and Financial Services sectors, feel free to check us out at

Job Title:

Security Risk Assessment Specialist/ Security Analyst

Location:

Hopewell, NJ
DURATION: 6+ Months
Pay Rate:
Best in the market

Job Overview
:
Seeking an experienced advanced security analyst to serve as a consultant administering and using network security tools in a CIRT/SOC environment. Primary tools will include RSA Security Analytics (Net witness), McAfee Enterprise Security Manager (Nitro) SIEM, and Fire Eye Mandiant Intelligent Response.

Responsibilities
:

• This team is responsible for monitoring, analyzing, categorization, configuration and tuning of the SIEM application and related traffic collection, alerting and reporting capabilities.
• This team develops and implements new signatures and policies to optimize the SIEM correlation engine and streamline the log management capabilities.
• Recognizes and identifies potential threats to the network and systems connected to the network from the Internet and Intranet.
• Operates, documents, and maintains security controls.
• Monitor for, and investigate potential security breaches.
• The team also reviews internal and external network traffic to create policies that intercept Malware and other network attacks using RSA Security Analytics (Netwitness) and other network IDS capabilities.
• Additionally the team is responsible for the infrastructure support, configuration, and use of the Fire Eye Mandiant Intelligent Response appliances, to detect and respond to advanced threats.
• Build correlation rules & alerts for the McAfee Enterprise Security Manager (Nitro) SIEM and RSA Security Analytics (Net Witness) products to identify malicious activities.
• Support infrastructure of the Fire Eye Mandiant Intelligent Response appliances.
• Create & run host-based Indicator of Compromise (IoC) sweeps using Fire Eye Mandiant Intelligent Response.
• Analyze and respond to Fire Eye Mandiant Intelligent Response hit reports.
• Third-level support to review, triage, analyze, and respond to alerts received in SIEM.
• Proactively review network data packets for potential attacks.
• Malware analysis as appropriate.
• Support forensic investigations as appropriate.

Work Experience/ Skills REQUIRED

• Minimum of 5 years of Infosec experience, preferably in a SOC environment.
• Minimum of 5 years but prefer 10+ years of Networking, TCP/IP, switching/routing/firewall experience.
• Minimum of 2 years but prefer 5 years of Network analysis, with a focus on security, tcpdump, windump, wireshark/ethereal.
• Implementation and/or administration of Netwitness or similar toolset.
• Implementation and configuration of a SIEM environment, including creating and tuning SIEM correlation rules.

Other requirements

• Incident Response.
• Event/alert monitoring.
• SIEM experience.
• Experience with CVEs, patch analysis, threat analysis.
• Experience with forensics.
• Written and verbal communication at a level appropriate for customer interaction/visibility.
• Bachelor's degree in a technical discipline is strongly preferred but will look at candidates with equivalent experience.

Helpful industry certifications

• CISSP, SANS GIAC (GCIA, GCIH, GCFA, GNFA), CCIE, CCNA, CEH, Security+, Network+, and other security vendor specific certs.

Additional preferred experience

• Nmap, Nessus, Metasploit, Net Witness, Arcsight, IPS/IDS, backtrack, knoppix, Bro IDS.

Thanks & Regards,
Shipra Chauhan | Team Recruitment |