Information Security Analyst

Inserso is seeking to provide an Information Security Analyst to support our DHS customer at their Chandler, AZ facility. This position is responsible for managing daily operations and administrating the Falcon CrowdStrike and MVision McAfee ePO Cloud applications, troubleshooting the Anti-Virus End Point infrastructure/cybersecurity defenses in support of the team’s 24X7 operations under the Service Delivery lifecycle. Additional team administration will include Monitoring tools such as BMC TrueSight and Axonius; Security tools such as Nessus/Tenable, WebInspect and PAC file server. The Information Security Analyst provides high quality, repeatable and sustainable IT support and processes to the IT Support teams and Technical Task Leads in managing, planning, monitoring, and reporting on the service and project execution.

The position is charged with managing and monitoring the enforcement of all applicable directives at a quality level acceptable to the government customer. The Analyst will devise, review and approve methods for monitoring, evaluating/reporting the performance of the team’s services. As part of a continuous process improvement role, the Information Security Analyst will play a critical role in reporting deviations, tracking and reporting error trends, and monitoring the results of training and other corrective measures.

This position reports to the Enterprise Services and Tools Operations & Maintenance (ESTOM) Team Lead. The Team supports the customer’s core hours, 7 AM – 7 PM ET, and afterhours support is provided by a rotating on-call team roster.

Responsibilities:

• Experience with MVision McAfee ePO Cloud and Falcon CrowdStrike administration, product deployments, and troubleshooting complex issues in a large network environment
• Experience with BMC TrueSight, Axonius or other monitoring tools
• Experience with Security tools such as Nessus/Tenable, WebInspect and PAC file server
• Experience with infrastructure systems administration, and Operations and Maintenance (O&M) server health checks
• Experience working in a large IT enterprise environment following SOP’s and Work Instructions to provide quality customer service
• Ability to provide solutions to complex issues; handle multiple tasks in a fast-paced environment; set priorities; meet deadlines per project scope
• Demonstrated ability to present complex, technical information to both technical and non-technical audiences
• Ability to work in a group setting and able to collaborate with remote personnel of various skill levels and provide MVision McAfee ePO Cloud and Falcon CrowdStrike support to enterprise customers
• Strong time management, good technical writing, presentation, and documentation skills
• Ability to work with minimal supervision, attention to detail, and follow-through
• Ensure the Change Management procedures are followed across the enterprise
• Perform other work-related duties as assigned.

Required Skills/Experience:

• Bachelor’s degree in related field or equivalent experience
• 10 years of experience in IT support or related field
• 3 years of experience administering McAfee MVision ePO Cloud, and/or Falcon CrowdStrike in a large enterprise
• 3 years of experience performing day-to-day activities required to administer and deploy McAfee software (McAfee Agent, McAfee Client Proxy), and Falcon CrowdStrike software (Sensors) to all enterprise workstations and servers
• 2 years administration of monitoring tools, e.g. BMC TrueSight, Axonius, SolarWinds
• Experience managing/troubleshooting workstation and server local anti-virus software, log analysis, as it relates to security compliance
• Hands-on experience managing Security Tools servers, to include Nessus/Tenable and WebInspect in a large environment, to include routine Windows patching and Application patching/upgrades
• Deep understanding of anti-virus policies, exclusions, dashboards, queries, reporting and analysis
• Knowledge and experience with remediation of vulnerabilities within a large infrastructure from Security Controls Assessment (SCA) audits and formulating Plans of Action & Milestone (POA&M’s)
• Must be a U.S. Citizen and pass the DHS Employment Eligibility Verification process
• If the position requires you to enter certain facilities, you may be required to attest to or provide proof of COVID-19 vaccination or be able to provide a negative COVID-19 test result based upon time frames established by the applicable facility. Additionally, must be comfortable wearing a mask and adhering to social distancing requirements, regardless of vaccination status, unless the position is 100% telework

Preferred Skills/Experience:

• Experience operating and maintaining enterprise level information security tools
• Certified in the administration of an enterprise monitoring tool
• 5 years of experience in Systems Administration, including server & workstation troubleshooting
• Experience using ITSM systems, such as ServiceNow
• Knowledge and experience with cloud-based infrastructures (AWS and Azure)
• Knowledge of network concepts/protocols
• Familiarity with Linux distribution types and command line
• Security , Network , Microsoft Certifications (MCTS or MCM)
• Microsoft Windows Desktop and Server OS knowledge (Win10, Server 2012/2016/2019)