Experis is looking for a Security Analyst for a long term contract position with one of our leading clients in Washington, DC Client requires a F2F Interview so candidates must be local to the area. REQUIRED SKILLS: -A strong understanding of the ArcSight SIEM platform -A strong understanding of cyber security threats, vulnerabilities, attacks, responsible groups, motivations and techniques. -7+ years of hands on experience in all areas of threat and vulnerability management. -An Associate's degree in computer science, information systems or other related field; or equivalent work experience. -To be considered for this role the candidate must have an understanding of Information Security including cyber security threats, vulnerabilities, attacks, responsible groups, motivations and techniques. -Experience in incident response required; (e.g. Indepth knowledge ofWindows/Unix operating system forensics, event logging systems, authentication methods, remote and local web application security, penetration testing). -Strong expertise in information security around platforms and IT infrastructure required; (e.g. Indepth knowledge ofWindows/Unix operating system security, authentication methods, firewalls, routers, IDS/IPS, remote and local web application security, penetration testing). -Experience in performing vulnerability scanning and supporting processes -Strong understanding of IP Protocol Suite; knowledge of IP Routing protocols. -Understanding of Information Security industry standards/best practices (e.g., NIST, PCI) along with and understanding of Information Security related laws and regulations (e.g., PCI, HIPAA, SOX). DESIRED CERTIFICATIONS: -ArcSight Certification (ACSA, ACIA) -General security certifications (CISSP, CISA, GIAC, GCIH, GREM, etc.) -Systems (MCSA, MCSE, LPIC-2/3, RHCE, etc.) -Networking (CCNP, CCIE, etc.) PRIMARY RESPONSIBILITIES: - The Security Analyst key activity areas are security monitoring, vulnerability analysis and incident response. -This includes the primary use of the ArcSight SIEM technology and other security monitoring tools. -The Security Analyst is the second line of defense and is primarily responsible for the configuration and testing of the monitoring and alerting tools and in providing support to Security Analysts with the identification of suspicious and malicious activity within the Enterprise. Threat/Incident Management -Provide escalated response and support to intrusion or security breach investigations -Management and monitoring of security devices vulnerability management systems, security configuration systems, enterprise correlation systems. -Automate security management processes including alerting, network management -Assess, design and recommend security incident avoidance platform based on systems resiliency models -Monitor access control and authorization systems and practices of security architecture SIEM/ArcSight Management -Support all aspects of Security Information and Event Management initiative. -Supporting the establishment, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses. -Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities -Tunes ArcSight performance and event data quality to maximized ArcSight system efficiency and detection capabilities -Continuously improve security monitoring program leveraging log analysis, data mining and security alerting (SIEM) -Vulnerability Management
Related projectsSearch for freelance jobs
can’t wait for more clients
and advertising. Thank you."