Role Description
:
This role combines technical acumen with operational vigilance to protect data and systems.
You will play a key role in isolating, investigating, informing, and implementing measures to detect and protect data across various sources and locations.
Key Duties and Responsibilities:
Validate suspicious events or reports, determine if they constitute incidents, and ensure proper documentation in appropriate reporting systems. Assess the severity of incidents and take immediate reporting and response measures Isolate, investigate, and implement measures to detect and protect sensitive data. Provide network intrusion detection, monitoring, correlation analysis, and incident response Coordinate with supported entities regarding significant incidents, ensuring comprehensive analysis and timely, accurate reporting. Explore log correlation using tools such as Splunk to identify patterns and respond to potential threats. Perform network and host-based digital forensics on various operating systems to enhance incident response efforts. Develop and implement IDS/IPS signatures and maintain an understanding of intrusion detection solutions. Compile and maintain internal Standard Operating Procedure (SOP) documentation. Participate in program reviews, product evaluations, and onsite certification evaluations. Qualifications:
Clearance Level: Secret
Education:
Bachelor’s degree in Cybersecurity, Computer Science, Electrical Engineering, Electronics Engineering, or Mathematics with a computer science concentration, or equivalent. Experience:
This is an entry level position, minimal hands on experience is required