Mobile_menu_button_hd

IT Security Architect II

Ascent Services Group

Job Description

Job Title: IT Security Architect II
Location: WORKS FROM HOME, SC
Position Type: W2 Contract 6+ months
 
Key focused area:
SIEM, IDS, IPS and host base antivirus experience. Endpoint detection and response. MS or Unix operating systems experience. Minimize risk/data exposure. Python/Perl is helpful.
 
Description:
These are Forensics Analyst positions. The ideal candidate will serve as a subject matter expert (SME) for digital forensics/incident response (DFIR). This position is responsible for investigating security incidents, identifying data exfiltration, review SIEM data, and building high quality technical reports. The candidate is expected to contribute to internal documentation and adherence to SLA targets and requirements, as well as to be able to troubleshoot complex problems with little oversight, take ownership and work independently as needed to resolve customer issues.
 
The Main Responsibilities:
Provide forensics investigative support of complex security incidents
Perform analysis of security incidents
Install, upgrade, and patch forensic tools
Perform in depth digital forensic investigations into potential security incidents using proprietary methodologies and cutting edge forensic tools
Research the latest in digital forensic examination products and look into the latest forensic analysis techniques through research
Provide guidance to tier 1 and tier 2 analysts
Review alerts generated by detection infrastructure for false positives and modify alerts as needed
Document and manage incident cases in ticketing/case management system
Hunt for and identify threat actor groups and their techniques, tools and processes
Maintain Industry Training This involves keeping up-to-date on security technologies, threats, and risk mitigation techniques
Maintain Knowledge of Current Threats Keep up-to-date on current threats by regularly reading industry-related articles
Customer Meetings attending and/or leading customer meetings as part of incident response and incident handling
Training and Mentoring SOC personnel Security Analysts are responsible for training new SOC employees; also responsible for training and mentoring existing SOC personnel on new technologies
System Maintenance assisting SOC Engineers with maintenance on security devices, as needed
Projects - May lead moderately complex security projects as assigned
Interface with customers on a daily basis to consult with them on best security practices and help them mature their security posture
Gain and maintain knowledge of Customers business and technical environment
Communicate incidents at an appropriate level of details with all levels of the organization
 
What We Look For In A Candidate
Must be US citizen
Undergraduate degree in computer science, engineering, or related field, or equivalent experience
knowledge and experience with the following operating systems: Windows, MacOS, Linux or UNIX.
 
Understanding of information security fundamentals, host and network security hardening and requirements; networking protocols; common intrusion techniques; and common risk management concepts
3-5 years’ experience in high volume environment performing digital forensic analysis
Analytical and problem-solving skills related to networking, operating systems, and malware analysis
Professional/technical certifications preferred: GCFE, GCFA, GCIA, Security +, CEH, OSCP, GCIH, CISSP, GPEN, GWAPT, GISEC, CISM or CISA
Oral and written communication skills and comfort with presenting technical issues
Knowledge of current and emerging technologies
 
Preferred Qualifications
Undergraduate degree in Cyber Security
3+ years of experience in incident response, computer forensics security, risk assessments, application security or network security
Understanding of SIEMs, IDS / IPS, host based anti-virus, Endpoint Detection and Response (EDR) and similar products
Microsoft or UNIX (including Linux or other UNIX derivatives) operating system administration/support experience
Experience with technologies, tools, and process controls to minimize risk and data exposure
Knowledge of scripting languages such as Python or Perl
Experience in large enterprise or carrier data centers and/or networks
Understanding of static or dynamic analysis of malware
5+ years’ experience performing forensics

Job Requirements

 
Apply
Apply

Job Snapshot

Location US-SC-Columbia
Employment Type Contractor
Pay Type Hour
Pay Rate N/A
Store Type IT & Technical

Recommended Jobs for You

Privacy Tips

For your privacy and protection, when applying to a job online:

Never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction.

Terms & Conditions
Snapshot
Ascent Services Group
Company:
US-SC-Columbia
Location:
Contractor
Employment Type:
Hour
Pay Type:
N/A
Pay Rate:
IT & Technical
Store Type:

Job Description

Job Title: IT Security Architect II
Location: WORKS FROM HOME, SC
Position Type: W2 Contract 6+ months
 
Key focused area:
SIEM, IDS, IPS and host base antivirus experience. Endpoint detection and response. MS or Unix operating systems experience. Minimize risk/data exposure. Python/Perl is helpful.
 
Description:
These are Forensics Analyst positions. The ideal candidate will serve as a subject matter expert (SME) for digital forensics/incident response (DFIR). This position is responsible for investigating security incidents, identifying data exfiltration, review SIEM data, and building high quality technical reports. The candidate is expected to contribute to internal documentation and adherence to SLA targets and requirements, as well as to be able to troubleshoot complex problems with little oversight, take ownership and work independently as needed to resolve customer issues.
 
The Main Responsibilities:
Provide forensics investigative support of complex security incidents
Perform analysis of security incidents
Install, upgrade, and patch forensic tools
Perform in depth digital forensic investigations into potential security incidents using proprietary methodologies and cutting edge forensic tools
Research the latest in digital forensic examination products and look into the latest forensic analysis techniques through research
Provide guidance to tier 1 and tier 2 analysts
Review alerts generated by detection infrastructure for false positives and modify alerts as needed
Document and manage incident cases in ticketing/case management system
Hunt for and identify threat actor groups and their techniques, tools and processes
Maintain Industry Training This involves keeping up-to-date on security technologies, threats, and risk mitigation techniques
Maintain Knowledge of Current Threats Keep up-to-date on current threats by regularly reading industry-related articles
Customer Meetings attending and/or leading customer meetings as part of incident response and incident handling
Training and Mentoring SOC personnel Security Analysts are responsible for training new SOC employees; also responsible for training and mentoring existing SOC personnel on new technologies
System Maintenance assisting SOC Engineers with maintenance on security devices, as needed
Projects - May lead moderately complex security projects as assigned
Interface with customers on a daily basis to consult with them on best security practices and help them mature their security posture
Gain and maintain knowledge of Customers business and technical environment
Communicate incidents at an appropriate level of details with all levels of the organization
 
What We Look For In A Candidate
Must be US citizen
Undergraduate degree in computer science, engineering, or related field, or equivalent experience
knowledge and experience with the following operating systems: Windows, MacOS, Linux or UNIX.
 
Understanding of information security fundamentals, host and network security hardening and requirements; networking protocols; common intrusion techniques; and common risk management concepts
3-5 years’ experience in high volume environment performing digital forensic analysis
Analytical and problem-solving skills related to networking, operating systems, and malware analysis
Professional/technical certifications preferred: GCFE, GCFA, GCIA, Security +, CEH, OSCP, GCIH, CISSP, GPEN, GWAPT, GISEC, CISM or CISA
Oral and written communication skills and comfort with presenting technical issues
Knowledge of current and emerging technologies
 
Preferred Qualifications
Undergraduate degree in Cyber Security
3+ years of experience in incident response, computer forensics security, risk assessments, application security or network security
Understanding of SIEMs, IDS / IPS, host based anti-virus, Endpoint Detection and Response (EDR) and similar products
Microsoft or UNIX (including Linux or other UNIX derivatives) operating system administration/support experience
Experience with technologies, tools, and process controls to minimize risk and data exposure
Knowledge of scripting languages such as Python or Perl
Experience in large enterprise or carrier data centers and/or networks
Understanding of static or dynamic analysis of malware
5+ years’ experience performing forensics

Job Requirements

 
IT Security Architect II Apply now