Job Requirements
Tampa, FL
Top Secret/SCI Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries
Job Description
Chipton-Ross is seeking a Cybersecurity Analyst 2 for a contract opportunity in Tampa, FL.
BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE)
POSITION RESPONSIBILITIES
REQUIRED EDUCATION
Bachelor's Degree is required.
School must be accredited.
WORK HOURS
Full-Time. This position follows a Panama schedule that includes working 12-hour shifts. This schedule allows for employees to have a three-day weekend every other week and rotates from days to nights approximately every 12 weeks. Employees are compensated with a pay differential during their night shift rotations.
ADDITIONAL
Applicants responding to this position will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information.
ADDITIONAL INFORMATION
BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE)
- Bachelor's degree with 2 years of experience
- U.S. Citizenship required
- A current/active DoD TS/SCI clearance
- Must possess DoD 8570 Certification for IAT Level II or higher prior to start date.
- Experience with a Security Information and Event Management (SIEM) tool.
- Ability to collaborate with other teams to investigate security incidents and provide insights for improving security posture.
- Working knowledge of network security controls such as routers, switches, firewalls and network access controls.
- Working Knowledge of Linux and Windows Operating Systems.
- Knowledge of vulnerabilities, threat detection, encryption, and security audits.
- Must be willing to work a Panama schedule that includes working 12-hour shifts.
POSITION RESPONSIBILITIES
- We are seeking experienced Cybersecurity Analysts to work on-site at our Tampa, FL location.
- Utilize your experience with a Security Information and Event Management (SIEM) tool. Splunk is preferred, but experience with an equivalent SIEM would be acceptable.
- Develop and Implement Splunk Queries: Create and optimize complex Splunk queries to extract, analyze, and visualize security data from diverse sources. Utilize Splunk Search Processing Language (SPL) to generate actionable insights for proactive threat detection and response.
- Design Splunk Dashboards and Reports: Design user-friendly Splunk dashboards and reports tailored to different stakeholders, such as security operations teams, management, and auditors. Provide real-time visibility into security events, trends, and key performance indicators.
- Configure and Maintain Splunk Infrastructure: Configure and fine-tune Splunk deployments, including data inputs, data parsing, field extractions, and data enrichment pipelines. Ensure the continuous availability and optimal performance of Splunk indexes, search heads, and forwarders.
- Utilize Splunk Enterprise Security: Leverage Splunk Enterprise Security to develop and implement security use cases, correlation searches, and notable events for threat detection and analysis. Monitor security-related alerts and incidents to identify and prioritize security threats.
- Utilize Trellix/Endpoint Security Solutions (ESS), formally Host Based Security System (HBSS) to detect and counter known threats.
- Collaborate with Cross-Functional Teams: Collaborate with cross-functional teams, including IT, network, and application teams, to integrate Splunk with various platforms and systems. Provide technical expertise in advising security on best practices and designing effective security controls.
- Investigate Security Incidents: Conduct in-depth investigations into security incidents, anomalies, and breaches using Splunk's forensic capabilities. Perform root cause analysis, incident triage, and post-incident reviews to identify gaps in security controls and recommend remediation actions.
- Documentation and Reporting: Document Splunk configuration, operational procedures, and security findings. Prepare comprehensive reports detailing security events, trends, and mitigation strategies. Communicate technical information effectively to non-technical stakeholders.
- Stay current with Industry Trends: Stay abreast of the latest cybersecurity threats, vulnerabilities, and industry best practices. Continuously enhance your knowledge of Splunk features and capabilities through self-study, professional training, and certifications.
- Individual must have a solid understanding of security information and event management (SIEM) concepts and best practices to include proficiency in troubleshooting Splunk configurations and performance issues.
- Ability to collaborate with other teams to investigate security incidents and provide insights for improving security posture.
REQUIRED EDUCATION
Bachelor's Degree is required.
School must be accredited.
WORK HOURS
Full-Time. This position follows a Panama schedule that includes working 12-hour shifts. This schedule allows for employees to have a three-day weekend every other week and rotates from days to nights approximately every 12 weeks. Employees are compensated with a pay differential during their night shift rotations.
ADDITIONAL
Applicants responding to this position will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information.
ADDITIONAL INFORMATION
- Applicants responding to this position will be subject to a government security investigation and must meet eligibility requirements by currently possessing the ability to view classified government information.
- Employment will be contingent on clearing a drug screen and background check. Both must clear prior to start date.
- Candidates responding to this posting must currently possess the eligibility to work in the United States. No third parties please.
group id: chipton