Information Assurance Specialist SIEM Analyst
Company Name:
Arca24.com
Salary period: Annual
Additional classifications: Engineering
TASC is seeking experienced professionals to join the Intelligence Solutions and Analytics (ISA) Sector. ISA provides specialized systems engineering, acquisition, and intelligence support to multiple Intelligence Community customers. The Information Assurance Specialists will provide security support services to the Agency's Cyber Security Operation Cell (CSOC) functional operations to perform 24x7x365 event monitoring, event investigating, and support the activities and equipment needed to safeguard computer infrastructure. Team will also provide the necessary Operations and Sustainment (O&S;) of the specialized equipment needed to perform the functions and manage the programs, described below: Monitor incoming event queues using security management tools.
Identify, categorize, prioritize, and investigate correlated events.
Perform investigation and triage of events and incidents and escalate according to SOPs.
Monitor/and work ticket queue for events and incidents.
Maintain shift logs with relevant activity.
Document investigation results and provide relevant details for final analysis.
Develop reports, dashboards, real-time rules, filters, and active channels, etc.
Provide event/incident procedure, long-term analysis, and investigation into NGA network activity and provide investigation reports.
Provide content development to include reports, dashboards, real-time rules, filters and active channels.
Configure SIEM tool performance and event data quality to maximize SIEM system efficiency.
Assist NGA cyber security teams with device event correlation.
Required
Qualifications:
Any Master's degree. Master's degree in Computer Information Systems, Computer Science, Information Technology, Information Science, Information Systems, or a related academic disciplines of science, technology, engineering, or mathematics preferred.
10-15 years experience in related field with minimum 6 years in SIEM tool analysis
DoD 8570 Management Level III. CISSP and/or CISM preferred
Event and Incident Analysis
Filtering of event data into dashboards
Reporting formats
Correlation Rules
Development experience in Smart/Flex Connectors
Content Analysis, Development and Testing
Web Content Filtering Analysis, Development and Testing
ISC2 recognized professional certifications preferred
SIEM Content Engineering Experience preferred
Knowledge of technical writing and documentation and the ability to map processes and procedures back to roles and responsibilities within the organization preferredEstimated Salary: $20 to $28 per hour based on qualifications.
Arca24.com
Salary period: Annual
Additional classifications: Engineering
TASC is seeking experienced professionals to join the Intelligence Solutions and Analytics (ISA) Sector. ISA provides specialized systems engineering, acquisition, and intelligence support to multiple Intelligence Community customers. The Information Assurance Specialists will provide security support services to the Agency's Cyber Security Operation Cell (CSOC) functional operations to perform 24x7x365 event monitoring, event investigating, and support the activities and equipment needed to safeguard computer infrastructure. Team will also provide the necessary Operations and Sustainment (O&S;) of the specialized equipment needed to perform the functions and manage the programs, described below: Monitor incoming event queues using security management tools.
Identify, categorize, prioritize, and investigate correlated events.
Perform investigation and triage of events and incidents and escalate according to SOPs.
Monitor/and work ticket queue for events and incidents.
Maintain shift logs with relevant activity.
Document investigation results and provide relevant details for final analysis.
Develop reports, dashboards, real-time rules, filters, and active channels, etc.
Provide event/incident procedure, long-term analysis, and investigation into NGA network activity and provide investigation reports.
Provide content development to include reports, dashboards, real-time rules, filters and active channels.
Configure SIEM tool performance and event data quality to maximize SIEM system efficiency.
Assist NGA cyber security teams with device event correlation.
Required
Qualifications:
Any Master's degree. Master's degree in Computer Information Systems, Computer Science, Information Technology, Information Science, Information Systems, or a related academic disciplines of science, technology, engineering, or mathematics preferred.
10-15 years experience in related field with minimum 6 years in SIEM tool analysis
DoD 8570 Management Level III. CISSP and/or CISM preferred
Event and Incident Analysis
Filtering of event data into dashboards
Reporting formats
Correlation Rules
Development experience in Smart/Flex Connectors
Content Analysis, Development and Testing
Web Content Filtering Analysis, Development and Testing
ISC2 recognized professional certifications preferred
SIEM Content Engineering Experience preferred
Knowledge of technical writing and documentation and the ability to map processes and procedures back to roles and responsibilities within the organization preferredEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
