Senior IT Security Analyst (Splunk Use Case Developer)

Location: Columbus, GA, United States

Position Overview: 

Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware, firmware and software . Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security . Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents. Investigates and resolves security incidents and recommends enhancements to improve security. Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
 

Responsibilities: 

  • You will be joining a team that provides SIEM support to a 24/7 Threat Management Center/Security Operations Center that protects a global payment processor from malicious cyber actors. 
  • We’re looking for a Python or JavaScript developer who loves to create powerful applications that help analysts extract threat indicators from the volumes of data available to them, while also helping to execute routine functions in an automated fashion. 
  • Certification in the Splunk SIEM tool is a must. 
  • Any new-hire will provide day-to-day automation support for the Information Security Division – writing custom code and scripts to increase productivity and improve security situational awareness for the whole team. Your will also analyze various security data sources (firewalls, Intrusion Prevention, endpoint security, etc.) to optimize their log ingestion to Splunk.   
  • Experience with implementing Security Automation and Orchestration (SAO) tools such as Demisto, Phantom, or Swimlane are a major plus.  Proficiency in creating REGEX code is also a plus.
  • New hire must arrive qualified to write and implement PYTHON code and be familiar with SIEM technologies and environments.  Professional development training will be provided as part of the team’s annual development/education strategy.
  • Write and test code, interface with the other business units to ensure tasks assigned meet the expectations, document work, respond to incidents and events as they occur.
 

Minimum Qualifications

  • Bachelor's Degree
  • Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security, or related field. Or related work experience.
  • Typically Minimum 4 Years Relevant Exp
  • Including network operations or engineering or system administration on Unix, Linux, MAC(Message Authentication Code), or Windows; proven experience working with security operations, intrusion detection systems, Security Incident Even Management systems, and anti-virus collection logs; including knowledge of industry standard security compliance programs (PCI, SOX, GLBA, etc.)

Preferred Qualifications
  • Professional certifications CISSP(Certified Information System Security Professional),CISM(Certified Information Security Manager) ,CISA(Certified-Information-Systems-Auditor),GSEC(GIAC Security Essentials) ,Network +,Security +
  • Typically Minimum 6 Years Relevant Exp
  • Knowledge of industry standard security compliance programs (PCI(Payment Card Industry), SOX(Sarbanes-Oxley) , GLBA(Gramm Leach Bliley Act))
 
Desired Skills and Capabilities:
  • Skills / Knowledge - A seasoned, experienced professional with a full understanding of area of specialization; resolves a wide range of issues in creative ways. This job is the fully qualified, career-oriented, journey-level position.
  • Job Complexity - Works on problems of diverse scope where analysis of data requires evaluation of identifiable factors. Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Networks with senior internal and external personnel in own area of expertise.
  • Supervision - Normally receives little instruction on day-to-day work, general instructions on new assignments.
  • Risk Assessment - Ability to identify, communicate, and mitigate risk within technical solution designs
  • Industry Knowledge - Continued self-education of new and emerging threats and relevant processes, controls, or technologies to mitigate them.
  • Incident Response - Knowledge and skills to contribute to all phases of Incident Response.
April A. Estes
Senior Recruiter
720-439-2609 Direct
april@proenlist.com 
www.proenlist.com 

Follow us at:
www.linkedin.com/in/aprilaestes
www.linkedin.com/company/proenlist/


 
or
this job portal is powered by CATS