ID
#46059386
Job type
Permanent
Salary
TBD
Source
Vaco Technology
Date
2022-09-23
Deadline
2022-11-21

Cyber Security Specialist - Richmond VA - Hybrid

Virginia, Richmond, 23298

Permanent

Vacancy expired!

The IT Security Specialist's responsibilities includes monitoring and analyzing network and system activity to identify and mitigate threats, prepare reports and actions plans if a security breach occurs, plan and conduct security tests of systems, conduct threat hunting to detect advanced threats that evade security solutions, monitor and communicate system patch status to relevant stakeholders, maintain and develop the SIEM system and support projects in IT security related matters.

MAJOR RESPONSIBILITIES AND ACCOUNTABILITIES

Monitor and analyze network and system activity

Monitor and analyze alerts from the SIEM system to identify and mitigate potential threats
Investigate suspicious activity from networks and systems
Investigate incidents related to malicious programs and potential intrusions

Incident management

Perform in-depth analysis in severe security incidents, including forensic analysis to sensitive VIP individuals
Prepare reports and action plans together with the Security Incident Response Manager if a security breach occurs

Threat Intelligence

Monitor and analyze external threat intelligence sources to identify security vulnerabilities, new attack vectors and other indicators of compromise to create alerts for the SIEM system and to exchange security related news with the Security Office team
Perform continuous threat hunting to detect threats that evade security solutions and to identify weak configurations in systems

Security Testing

Plan and conduct security tests on systems to prevent security incidents by identifying vulnerabilities and give recommendations to system owners how these vulnerabilities should be mitigated
Monitor patch and vulnerability status of systems and communicate suggested patch prioritization with regards to CVSS scores and the patches that yields the most value to relevant stakeholders

Maintain and develop the systems in Security Office

Maintain and develop the systems in Security Office including the SIEM system to enhance Swedish Match capabilities of discovering threats and vulnerabilities in the infrastructure
Review alerts continuously in the SIEM system to minimize the number of false positives that arise to reduce manual work
Continuously review needs for additional systems that could increase Security Office's capabilities of detecting threats and perform threat hunting and ingesting threat intelligence

Support organization in procurement and implementation of new IT services

Provide requirements and support when procuring new IT services
Provide support to implementation projects to ensure new systems have the required level of security
Support Solution Architects and developers with IT Security guidance

Vacancy expired!

Report job