What are the responsibilities and job description for the Tier II- virtual Security Analyst position at DKB Innovative?
Job Description:
Core function is to provide proactive Tier II /vSA support of all DKBInnovative and MSSP clients cybersecurity
environments, and to prioritize the mitigation of identified risk.
Role and Responsibilities:
● Monitor, assess and troubleshoot security incidents.
● Maintain a daily security support ticket queue.
● Participate and contribute to incident response events.
● Participate in On-call rotation for security alerts reported by 3rd-Party SOC/SIEM during non-business
hours.
● Practice good task time management and problem escalation.
● Understand and adhere to policies and procedures.
● Install, configure, deploy, and operate security tools and applications to protect data and infrastructure;
EPP/EDR, FIM, Data Discovery and Classification, Threat Hunting, etc.
● Perform vulnerability management to include scans and remediations of platforms, hardware, and thirdparty applications.
● Create and maintain security documentation such as standard operating procedures, training materials,
and best practices.
● Assist with Security Risk Assessments and mitigation or remediation options.
● Assist with security product research, proof of concepts, feature enhancements and automation.
● Receive and action direction provided by Tier III, vISM’s and CSO.
● Work closely with internal and client contacts as required by projects and problem management.
● Stay current on information technology trends, standards, best practices, and news.
Qualifications:
● Familiar with Microsoft security baselines and security drift management in line with equivalent CIS
benchmarks applicable to each OS version.
● Basic knowledge of security technologies such as Active Directory Group Policy, anti-malware tools,
firewalls, identity access management, IDS / IPS, multi-factor authentication, network devices, SIEM
products.
● Familiar with CIS and NIST CSF frameworks.
● Familiar with cloud technologies such as Amazon and Azure, especially security related.
● Working knowledge of Change Management.
Additional consideration given for:
● Education and/or 1 years equivalent experience in similar role and responsibility.
● CompTIA Security
● CompTIA Network
● Microsoft MTA.
● Working knowledge of scripting languages and automation tools highly preferred
● Familiar with compliance and regulations, and the impact associated when not followed.
● Working knowledge of NIST 800-171, PCI, HIPAA, CMMC, SOC2 frameworks.
● Hands-on experience administering various Linux operating systems.