Job Seekers, Please send resumes to resumes@hireitpeople.com

Detailed Job Description:

Collaborative Influence: works collectively with staff, agencies and peers to further enterprise initiatives and objectives. Embraces Challenge: operates as a change agent in the enterprise by continually seeking ways to improve how services are offered in a cost-effective manner. Embraces change opportunities while encouraging staff to do the same. Earns Trust: operates in a trustworthy manner such that they earn the trust of their peers, their staff, and the enterprise. Enables Performance: enables the objectives of peers and agencies who have specific objectives to accomplish by removing barriers and enabling or improving key services. Informed Judgement: overcomes situations where decisions will need to be made with little information and as such, the individual in this position should feel comfortable making strategic decisions with the information currently available. Thinks Horizontally: seeks to work horizontally across the enterprise to solve and prevent problems collectively and leverage the collective expertise contained in the organization.

Job Responsibilities

The successful candidate will work alongside a small team to provide administration and incident response to our workstation and server environment (15k+ machines) utilizing modern malware-detection and incident-response techniques and technologies. Primarily responsible for development, administration, and maintenance of the organization’s SIEM tool, SPLUNK. Maintain up-to-date security baselines for the secure configuration and operation of security tools and endpoint devices in use within the organization. Utilizing modern log aggregation tools and analyzers, review logs and reports, interpret the implications of activity and devise plans for appropriate resolution. Collaborate with IT, security, human resources, and the legal office to ensure full legal compliance of company policies, procedures, forms, notices, and materials. Produce procedural/process documentation pertaining to the configuration/operation of the organizations SIEM, and reviews/revises existing documentation periodically. Other duties as assigned

Requirements:

Proven track record of administering SPLUNK including:

Extensive experience with the ES Module (Enterprise Security) - 2 years minimum Monitoring/troubleshooting/administration - 2 years minimum Design/creation of SPLUNK dashboards - 2 years minimum Professional oral and written communication skills Extensive Windows security administration experience - 5 years minimum Linux operating systems  Cyber-Security related accreditations such as CISSP, CISA, CISM, CCSP, CompTIA Security+, GSEC, SSCP, or others  Must adhere to and pass annual background checks.