This site uses cookies. To find out more, see our Cookies Policy

Cybersecurity Specialist II in Charlotte, NC at Eliassen Group

Date Posted: 3/28/2019

Job Snapshot

  • Employee Type:
    Contractor
  • Location:
    Charlotte, NC
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
    3/28/2019

Job Description

We have an exciting opportunity for a Cybersecurity Specialist II with our industry-leading client in Charlotte, NC.

We will accept corp to corp or w2 contractors. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

Responsibilities of the Cybersecurity Specialist II:

  • Responsible for support, maintenance and development of tools utilized to generate cyber security events and incidents, involving the Security Information and Event Management (SIEM) system
  • Work closely with peers, other internal/external teams and management in a 24x7 Cybersecurity Operations Center (CSOC) environment
  • Responsible for following processes and procedures as defined by Cybersecurity leadership and the Computer Incident Response Team (CIRT)
  • Perform in a role similar to systems administrator with a focus on detection and correlation of cyber events related to managed systems
  • Generate correlation content via network, endpoint, and log analysis to analyze and aggregate cybersecurity events (e.g., SIEM, IPS, firewall, etc.)
  • Operationally integrate known threats and indicators of compromise into SIEM content in order to track cyber threat actors/campaigns based off technical analysis and open source/third party intelligence
  • Research and develop new use cases related to exploits and cyber threats
  • Enhance and tune detections and alerts and other cyber event correlation rules to reduce false positives in the SIEM environment
  • Provide creative and innovative solutions to automate and enhance processes and capabilities related to content development and threat detection / presentation

Requirements of the Cybersecurity Specialist II:

  • 2+ years’ experience in a security operations center and/or system administration role
  • Administratively ensure tools are functioning as designed to optimize delivery of threat alert data for analysis.
  • Lead capture and development of content based on Threat Monitoring team findings / requests. Lead cursory and/or in-depth analysis (i.e. packet captures, endpoint behaviors, etc.), or collaborate with peers when appropriate for hand-offs/escalations
  • Ability to evaluate and develop content / alert solutions for cloud based environments including Azure, OMS, AWS, O365, etc
  • Experience deploying and managing containers and applications
  • Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings and provide briefings to various levels of staff / management
  • Ability to work in high pressure situations and within a team environment
  • Experience with writing and editing technical documentation and operational procedures
  • Demonstrated effective problem solving & analytical skills
  • Direct background or exposure to cyber security operations
  • Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies
  • General networking understanding and/or experience to include Understanding of TCP/IP communications & knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB
  • Windows and UNIX/Linux command line scripting experience and programming experience
  • Demonstrated understanding of the life cycle of cybersecurity threats and tools used to mitigate risk.
  • Familiarity or experience with the Cyber Kill Chain® methodology
  • Innovative – ability to recognize and seek improvement and efficiency opportunities
  • Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain
  • Experience with the maintenance, configuration and operation of Cybersecurity tools related to the cloud environment, including OMS, Web Application Firewalls, Log Analytics and other cloud centric solutions
  • Working knowledge of Active Directory Federation Services (ADFS) or Azure Active Directory and understanding of SAML 2.0 and cloud SSO providers
  • Knowledge in automated build systems required, including Jenkins, Docker, AWS

Keywords: UNIX, Linux, Cyber Security, Jenkins, AWS, Docker

Job ID: 317559

About Eliassen Group:

Eliassen Group provides strategic talent solutions to drive our clients’ innovation and business results. Leveraging over 30 years of success, our expertise in IT staffing, Agile consulting, creative services, managed services, and life sciences enables us to partner with our clients to execute their business strategy and scale effectively. Headquartered in Reading, MA and with offices from coast to coast, Eliassen Group offers local community presence, deep networks, as well as national reach. For more information, visit http://www.eliassen.com.

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!