Vacancy expired!
- Hybrid - Pittsburgh, PA
- Working Hours (Flexible): see below
- Must be willing to work one of the following shifts below: 1st shift: Tuesday – Saturday OR 3rd Shift: Tuesday - Saturday
- Travel: no travel besides traveling for hybrid work setting
- OT (if applicable should it be added to budget on request): chance of it when needed
- Replacement
- Daily operations
- Responding to events
- Mitigating Risk
- Security operations center
- Front lines for cyber security
- Support Tech. teams
- Protecting data
- Responding to security related events
- Diverse background (technology, and cyber security)
- Technology, and cyber security background required
- SOC/IR background would be a nice to have
- SOC - (security operations center) team
- IR - (Incident response) team
- Candidate will be reporting to manager or one of other managers within team
- Incident response principles or related technical domain that is applied in the context of a broader understanding of CSIRT and related systems and processes
- Demonstrate core leadership and training for the incident responders and forensic examiners
- Proactively identify and remediate threats occurring in the environment
- Participate in the day-to-day security operations monitoring and response from the Security Operations Center
- Perform malware analysis, reverse engineering, and de-obfuscation techniques
- Demonstrated threat hunting experience with Python, SIEM and EDR solutions
- Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cybersecurity product suite, e.g. NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc.
- Demonstrate use and understanding of security technologies such as Security Incident and Event Management (SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Forensic tools
- Strong understanding of digital forensics techniques such as deadbox analysis and volatile data analysis.
- Demonstrated experience in performing post-incident computer forensics while maintain the proper chain of custody and data integrity.
- Provide direction to assist with develop of content and action tuning requests to improve alert fidelity and reduce false positives
- Familiarity with SOAR (Security Orchestration, Automation and Response) software with an emphasis on building complex playbooks for automating routine incidents
- Demonstrate threat hunting experience with Python, SIEM and EDR solutions
- Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cybersecurity product suite, e.g.,
- NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc.
- Demonstrate use and understanding of security technologies such as Security Incident and Event Management
- (SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Forensic tools
- Candidates must have all skills listed, and the interview conducted will be the determining factor if the candidates are a good fit for this role
- Passion
- Strong communication skills
- Strong writing skills
- Dependable
- ID: #49295895
- State: Pennsylvania Pittsburgh 15201 Pittsburgh USA
- City: Pittsburgh
- Salary: Depends on Experience
- Job type: Contract
- Showed: 2023-02-19
- Deadline: 2023-04-07
- Category: Security