Job Details
Level: Experienced
Job Location: Remote - ,
Position Type: Full Time
Salary Range: Undisclosed
Job Category: Information Technology
Description
We are looking for a passionate Security Analyst Level 2 with experience in information security and technology to take a triage specialist role in our growing MSSP within the SOC, to review and address client security issues. Additional responsibilities would include reviewing client security needs and recommending solutions consistent with the Kraft Kennedy SOC. This position is remote and can be located in CT, DC, FL, IL, MA, NY, , PA, TN, TX, or VA.
Duties/Responsibilities:
The successful candidate must be an individual who understands business operations, information technology and security. This individual must have demonstrated hands on experience with information security testing and consulting. High level communication skills are essential to successfully translate technology and security requirements into business terms. Strong client service skills are necessary for interacting with various levels of internal IT staff as well as corporate leadership.
- Maintain working knowledge of cyber threat actor tactics and techniques
- Research, identify and understand new threats
- Review client issue and take steps to remediate security threat
- Conduct security audits and risk assessments with commercial tools and techniques
- Report and present findings to team and clients
- Excel as a self-motivated individual who can work on their own as well as integrated with a team in a variety of situations
Qualifications
Required Skills/Abilities:
- 2 years of IT security review and remediation for internal or external client
- Can be on call outside of normal business hours in case of an emergency.
- Experience in several IT disciplines may provide a solid framework for this position, but must have hands-on experience using security monitoring tools, running vulnerability scans, and reviewing vulnerability assessment reports
- Familiarity and knowledge of security frameworks (NIST CSF, CIS, ISO)
- Working knowledge of network security concepts and technologies, including but not limited to firewalls, IDS/IPS, proxy servers, access control systems, and web application firewalls.
- Strong networking knowledge with a focus on security
- Programming skill (Python, Ruby, PHP, C, C#, Java, and Perl) desired
- Hand on experience with incident handling techniques and processes desired
- Must possess strong verbal and written skills
- Law firm experience is a definite a plus!
Education and Experience:
- Minimum of two years experience in IT Security is required- Well-developed troubleshooting and problem-solving skills- Knowledge of endpoint detection and response solutions- Experience with vulnerability management tools- Working knowledge of Windows and/or Linux systems- Must be able to manage and prioritize multiple assignments while meeting deadlines- Motivated self-starter with a desire to learn
- Security Certifications (CISSP, GCIA GCIH, GCFA or GCFE) a plus!