Information Security Operations Analyst Jobs

Experience with administration and management of Windows, Linux, UNIX, or mobile operating systems.

Guide the Vulnerability Management Plan to facilitate, monitor, and support the remediation and reporting activities of the VM program.

Knowledge of system and application cyber security threats and vulnerabilities

Analytical problem-solving capabilities and strong decision-making skills

Knowledge and experience working across a geographically and culturally diverse organization.

Manages response to global security incidents including coordination and leadership during security incidents and malware outbreaks.

Program and project management skills

Leadership / people management skills

Mentor, partner, and develop current set of Information Security Managers that span across operations, architecture, security monitoring, and identity management functions.

Works closely with other security managers and CISO to develop the overall InfoSec strategy

Manages expectations of our customers, leadership across other departments, and executive stakeholders

Manages expense and capital budgets for security investments

3+ years of experience in security/security operations developing, reviewing, or monitoring controls baselines

Previous experience as a systems administrator (Windows and Linux)

Experience working in ServiceNow or other ticketing system

Experience testing reports with baseline variance detailed and remediation proposals

Experience closing Security Testing tickets

Experience with Jira and Confluence

3+ years of experience in security/security operations developing, reviewing, or monitoring controls baselines

Previous experience as a systems administrator (Windows and Linux)

Experience working in ServiceNow or other ticketing system

Experience testing reports with baseline variance detailed and remediation proposals

Experience closing Security Testing tickets

Experience with Jira and Confluence

Work Experience, Knowledge, Skills & Abilities:

Proof of certifications to be printed and provided to COR & task manager prior to assignment.

Utilize agency Security Event Manager Software to measure and model traffic, while identifying patterns and ports.

Manage the resolution of computer security events that affect SSA information systems using SSA SOC provided incident response ticketing system.

Produce ad-hoc reports as directed by the task manager.

Upon identification of a possible threat, communicate that threat to customer, as directed by the task manager.

Formal education or professional experience in information assurance and/or information security management.

Preferred Education Skills And Experience

Strong communication skills including experience delivering professional presentations to directors and other high-level staff.

Experience identifying key performance indicators to quantitatively assess the performance of a security program and to characterize an organization’s security posture.

Security posture metrics and reporting

Understanding of how to utilize automation tools to increase the productivity and responsiveness of a SOC .

Work Experience, Knowledge, Skills & Abilities:

Proof of certifications to be printed and provided to COR & task manager prior to assignment.

Utilize agency Security Event Manager Software to measure and model traffic, while identifying patterns and ports.

Manage the resolution of computer security events that affect SSA information systems using SSA SOC provided incident response ticketing system.

Produce ad-hoc reports as directed by the task manager.

Upon identification of a possible threat, communicate that threat to customer, as directed by the task manager.

Work Experience, Knowledge, Skills & Abilities:

Proof of certifications to be printed and provided to COR & task manager prior to assignment.

Utilize agency Security Event Manager Software to measure and model traffic, while identifying patterns and ports.

Manage the resolution of computer security events that affect SSA information systems using SSA SOC provided incident response ticketing system.

Produce ad-hoc reports as directed by the task manager.

Upon identification of a possible threat, communicate that threat to customer, as directed by the task manager.

Experience using Splunk, Splunk Enterprise Security (ES), and other Security Information and Event Management (SIEM) tools.

Supports efforts to develop communications for internal stakeholders and executive and management teams during recovery operations.

Minimum two (2) years Intrusion detection, incident response, security monitoring, and vulnerability management.

Working knowledge of Security+ CE or SSCP certification desired.

Continuing education and career certifications

Documents or mitigates newly identified vulnerabilities.

Assisting with the management of alarm, access control, and video surveillance systems, and providing after-hours alarm/emergency response as required.

Reviewing various security standards, custom security requirements, and statements of work.

Bachelors or one or more years of work experience.

Experience in Microsoft Office products and programs, including Word, PowerPoint, and Excel.

Good Independent judgment and discretion, and risk analysis skills.

Knowledge of Digital Monitoring Panels (DMP) and Software House/C-Cure access control systems.

Security subject matter knowledge and experience in InfoSec Governance, Risk and Compliance solutions and general security policy.

Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified in a timely manner.

Experience in a security administration role supporting multiple platforms and applications.

Experience protecting secure networks, systems, and application architectures.

Experience planning, researching, and developing security policies, standards, and procedures.

Strong written and verbal communication skills.

Security subject matter knowledge and experience in InfoSec Governance, Risk and Compliance solutions and general security policy.

Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified in a timely manner.

Experience in a security administration role supporting multiple platforms and applications.

Experience protecting secure networks, systems, and application architectures.

Experience planning, researching, and developing security policies, standards, and procedures.

Strong written and verbal communication skills.

2 years project management or equivalent experience in technology or information security fields

Business or technical degree (BS), or equivalent experience

Working towards or holding Information Security related certifications

Collaborate with Customer Trust to triage requests for:

Find appropriate responses to customer questions

Maintain Okta’s CIC’s RFP response database

Work Experience, Knowledge, Skills & Abilities:

Proof of certifications to be printed and provided to COR & task manager prior to assignment.

Utilize agency Security Event Manager Software to measure and model traffic, while identifying patterns and ports.

Manage the resolution of computer security events that affect SSA information systems using SSA SOC provided incident response ticketing system.

Produce ad-hoc reports as directed by the task manager.

Upon identification of a possible threat, communicate that threat to customer, as directed by the task manager.

Works with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts

Experience with Containerization technologies (e.g., Docker, LXC, Rocket)

Research emerging threats and vulnerabilities to aid in the identification of incidents

Experience in information security, cybersecurity, or a related field.

Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources

Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization

Works with security information and event management (SIEM) to manage/tune the system, create/manage the detection content and actively watch for alerts

Experience in information security, cybersecurity, or a related field.

Experience with Containerization technologies (e.g., Docker, LXC, Rocket)

Research emerging threats and vulnerabilities to aid in the identification of incidents

Note: Initially onsite , then it is Hybrid mode

Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources

KNOWLEDGE SKILLS AND ABILITIES/LICENSE OR CERTIFICATION REQUIRED

KNOWLEDGE SKILLS AND ABILITIES/LICENSE OR CERTIFICATION PREFERRED

Basic knowledge of compliance frameworks, audit/assessment processes, reporting methods, and project management.

Working knowledge of domain and application account management.

Identity and Access Management technology experience

Participates in creation of security awareness training/education across organization.

Proven organizational and time management skills.

Employ modern data collection and analysis techniques to proactively identify and pursue opportunities for process and team management improvement.

Bachelor's degree from an accredited college or university or related equivalent experience required.

Support the security programs onboard RCG ships and in the associated terminal facilities.

Identify key metrics and insights to support decision-making and risk mitigation strategies.

Analyze information from various sources such as reports, projects, and daily operations platforms.

Oversees the workflow within IAM including access provisioning, compliance, access management (including privileged accounts) and other functions in Information security.

Plan and manage Access Certification, RBAC & SoD related initiatives.

Deep technical expertise in cyber threat management (cyber threat intelligence and incident/crisis management)

Strong leadership skill, ability to motivate teams.

Preferred industry qualifications (e.g. CISSP, CISM, CISA, etc.) which are directly related to cybersecurity

Research, develop, and recommend hardware and software needed for Incident Response and develop procedures and response plans to maintain business operations.

Management of enterprise security tools

management of enterprise security tools

Minimum 3+ years of experience required