VSG Business Solutions LLC
Location
Pittsburgh, PA | United States
Job description
Job Title Security Analyst
Job Location Pittsburgh, PA HYBRID
Pay Rate $55-60\HR, W2
Visa USCs and GCs
Duration 6+ Months C2h
Job Description
Demonstrate threat hunting experience with SIEM and EDR solutions Yes
Demonstrate use and understanding of security technologies such as Security Incident and Event Management (SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Forensic tools Yes
Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cybersecurity product suite, e.g., NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc. Yes
Candidate Technical and skills profile:
Describe the role and the key responsibilities in order of which they will be doing daily:
Incident response principles or related technical domain that is applied in the context of a broader understanding of CSIRT and related systems and processes
Demonstrate core leadership and training for the incident responders and forensic examiners
Proactively identify and remediate threats occurring in the environment
Participate in the day-to-day security operations monitoring and response from the Security Operations Center
Perform malware analysis, reverse engineering, and de-obfuscation techniques
Demonstrated threat hunting experience with Python, SIEM and EDR solutions
Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cybersecurity product suite, e.g. NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc.
Demonstrate use and understanding of security technologies such as Security Incident and Event Management (SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Forensic tools
Strong understanding of digital forensics techniques such as deadbox analysis and volatile data analysis.
Demonstrated experience in performing post-incident computer forensics while maintain the proper chain of custody and data integrity.
Provide direction to assist with develop of content and action tuning requests to improve alert fidelity and reduce false positives
Familiarity with SOAR (Security Orchestration, Automation and Response) software with an emphasis on building complex playbooks for automating routine incidents
Describe the required must have technical skills, tools, or experience:
Demonstrate threat hunting experience with SIEM and EDR solutions
Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cybersecurity product suite, e.g.,
NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, NAC Solution, EDR, etc.
Demonstrate use and understanding of security technologies such as Security Incident and Event Management
(SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Forensic tool
Are there any skills you are willing to flex on if a candidate does not, have it?
Candidates must have all skills listed, and the interview conducted will be the determining factor if the candidates are a good fit for this role
Job tags
Salary