Security Analyst

Role : Security Analyst

Location : 4 days per week onsite in Baltimore, 1 day remote

Duration : 6 Months Contract to hire

Responsibilities :

Manage Information Security Service Now & MSS Ticket Queue

Provides support related to security incidents escalated from the IT Service Desk or other internal support departments as well as Managed Security Services Portal :

Investigation of issues including but not limited to : Malware infections, data leakage, internal / external network abuse, SPAM / Email Viruses, Phishing attempts, IPS / IDS Alerts.

Documents support activities and captures resolutions in Service Now & IBM MSS Portal. Day to Day Operations

Monitoring and tuning of security alerts from systems such as SIEM, IPS / IDS systems.

Assist with Risk Assessments of Enterprise systems.

Document, audit and validate security controls.

Validate and maintain accuracy of SIEM system log & Netflow sources.

Participate in weekly SIEM tuning calls with Managed Security Services provider.

Auditing systems for abuse (Web Filtering, Network Bandwidth, etc.)

Develop and maintain documentation and procedures of network security systems.

Recommend security enhancements to systems and devices.

Keep up to date with Security trends.

Detect, report and track vulnerability remediation to internal systems.

Reporting & Metrics

Collect & document metrics from various systems (Email Filtering, Web Filtering, SIEM, etc) to be reported to Business Stakeholders and Executive IT Management.

Security Awareness

Participate in the creation of Security Awareness content material (Phishing Campaigns, Posters, Information Security Blog, Newsletter articles etc.)

Promote a security conscious culture at Samuel Project Management

Plan and execute Security related projects.

Provide status updates on project updates

Qualifications :

Technical / University combined with Security+ Certification or equivalent.

5+ years' experience in varied IT, database management, and high exposure end-user situations.

Previous experience with IBM QRadar and Cisco FirePower.

In depth expertise in Windows based desktop & server technologies.

In-depth expertise of TCP / IP and Networking.

Demonstrate strong critical thinking, analytical & problem-solving skills.

Ability to interact successfully with technical peers & non-technical users.

Excellent verbal and written communication skills.

Improve security skills through training and share training experiences with the team.