Role : Threat Detection and Response Expert
Location : Jacksonville, FL Onsite
Full time
Responsibilities
• Perform risk assessments to evaluate the criticality of information security events
• Monitoring, detection, and analysis of security-relevant events, including response and documentation
• Improvement of the current threat detection capabilities, ideally via automation of standard processes
• Ensuring of effective daily Operations, managing workload of the Threat Detection & Response Team
• Acting as escalation and contact point for more critical cases, complaints or process queries.
• Definition, review and enhancement of Threat Detection & Response processes and tools
• Ensuring that predefined processes and SLAs get met.
• Reporting of Information Security Incidents to Senior Management and regulators.
• Supporting the entire SOC team with your security expertise and process know-how
• Disciplinary leadership of a small team.
Required Experience
• Good understanding of enterprise technologies especially focusing on security devices, network engineering, operating systems, databases and security configurations on application level
• Experience with analyzing system logs including network traffic logs, payload, event logs, application logs, firewall logs, Active Directory etc.
• Experience with Security Incident and Event Management (SIEM) systems, ideally with Splunk Enterprise Security and Chronicle SecOps
• Good knowledge of current threat landscape and attack scenarios/tactics, as well as containment and protection measures
• Fluent English skills
• Very good communication, analytical and documentary skills
• Independent way of working with strong problem-solving ability
• Experienced in communicating with higher management levels
• Ideally project management skills and experience
• Ideally experience in KPI reporting
• Ideally first leadership experience
Education/Experience
• Study in IT, Information Security or any other comparable profession or any other comparable apprenticeship
• Cyber Security expertise, proven by industry-standard certifications, such as CISSP, CISM, GCIH or similar
• Ideally experience with cloud monitoring (Azure, Google)
• Knowledge of risk assessment tools, technologies, and methods.
• Experience with monitoring and logging tools (e.g., Splunk)
• Experience with cloud native SIEM or SOAR tools (e.g. Google Chronicle)
Regards,
Shweta Sharma
shweta.sharma@msrtechnologies.com
Position Overview: We are looking for a detail-oriented and highly organized Data Entry Clerk to join our remote team. This role involves managing and entering data accurately into systems, ensuring data integrity, and maintaining confidentiality. The ideal candidate...
Work Arrangement This position is onsite, full-time and works an alternative work schedule, Mon-Thurs., 6:30am to 5:00pm with availability for OT based on business needs. Job Overview The Airframe Fabrication Technician at AEVEX Aerospace performs precision mechanical...
...Real Heroes Work Here! CRi is seeking a Program Manager for our ICF Residential program located in Chantilly, VA ! The Program... ...of at least 4 people. Experience in supervision, budgeting, crisis intervention, assessment, and service planning. Must have...
...Position: Facilities Security Officer (FSO) Location: Irvine, CA Pay: 130k - 150k DOE Requirement: Must have security clearance ICEYE US, Inc. is seeking a dedicated Facilities Security Officer (FSO) to join our team. The FSO will be responsible for maintaining...
...Charge Nurse - HealthCare Industry Location: Alta Heights Post Acute AHP01, 813 South Dickerson Rd, Goodlettsville, TN 37072 Position... ...pounds. Prolonged use of a computer and office equipment. Travel may be required. Education & Experience: ~ Graduation from...