About the job Senior Consultant 1 (hybrid-remote)
*7 Month Contract
This is a hybrid-remote role
EXPERIENCE
-Experience in the field of Information Systems Security required.
-SIEM - Google Chronical
-Web Filtering Tool - Zscaler ZIA
-Firewall - Firewall rules, subnet, ports
1. Significant Experience with Google Chronical, McAfee SIEM to
(a) Configure and implement rules, data sets, APIs, third party cloud API integration to facilitate ingestion of logs sources like o365, Azure AD, AWS (b) Migrate and implement McAfee SIEM log data sets to Google Chronical (c) Configure IOC, and alerts (d) Conduct searches raw logs, Investigate alerts, assets, domains, users, IPs, files, Google Cloud Threat Intelligence (GCTI). (e) Configure and monitor events using rules, and run rules against historical data (f)Working experience with YARA-L language
2. Experience with Firewall and Firewall rules, IP addressing, subnets, ports and VPN.
(a). Configure and implement firewall rules (b). Audit firewall rules and network segmentation. (c). Verify and Submit firewall rule requests
3. Experience with Web filtering tool specifically with Zscaler (ZIA), and Cisco Umbrella
(a). Implement new web filtering solution Zscaler ZIA (b) Test, verify and implement policies, create groups, grand access to groups.
4. Experience with NextGen Antivirus Crowdstrike to investigate, and remediate incidents, alerts, IOCs, and IOAs.
5. Experience with AD, GPOs, Security groups, Windows Servers, Desktop OS.
6. Experience in the field of Information Systems Security required. Analyst must have working knowledge of relevant FISMA/NIST information security regulations and guidelines.
7. Working knowledge of IT Security Best Practices regarding (a) networks and networking including protocol analysis, anomaly detection, and troubleshooting
Required Skill-Set
-Prior hands on experience configuring, migrating and implement rules, data sets, APIs, and third party cloud API's for the Google Chronicle SIEM
2 years of experience
-Prior hands on experience configuring, migrating and implementing SIEM rules using McAfee SIEM
3 years of experience
-Prior experience documenting, creating and provisioning network firewall rule sets
3 years of experience
-Prior hands on knowledge and experience conducting security analysis using Crowdstrike in a professional environment
3 years of experience
-Prior hands on knowledge and experience conducting group policy using Active Directory, Server and Desktop OS in a professional environment
3 years of experience
-Prior hands on knowledge and experience of TCP/IP segmentation, ports and DNS protocols
3 years of experience
-Ability to demonstrate effective written and verbal communication skills.
3 years of experience