Security Analyst

About The Position

Requirements

• 4+ years of experience as a security analyst.
• Experience working with a Managed Security Services Provider (MSSP), preferably Secureworks.
• Experience coordinating and conducting event collection, log management and event management using Security Information & Event Management (SIEM) or other log management systems.
• Experience with identity monitoring activities using SIEM or other log management systems.
• Experience with research and analysis of log sources utilized for security monitoring.
• Experience configuring and monitoring IDS/IPS, log collectors, firewalls, load balancers, web gateways, and other network traffic physical and virtual appliances.
• Experience with endpoint deployment solutions to enable installation of security products and telemetry gathering on computer workstations and servers of varying operating systems and versions (e.g., SCCM, Altiris, KACE, Ivanti).
• Experience in Microsoft Active Directory on-premises and Azure (hybrid) administration, including practices of account provisioning, enable/disable/reset, and management of Organizational Units and Groups.

Responsibilities

• Monitor security systems and analyze logs.
• Coordinate and conduct event collection, log management, and event management using SIEM or other log management systems.
• Perform identity monitoring activities using SIEM or other log management systems.
• Research and analyze log sources utilized for security monitoring.
• Configure and monitor IDS/IPS, log collectors, firewalls, load balancers, web gateways, and other network traffic physical and virtual appliances.
• Utilize endpoint deployment solutions for security product installation and telemetry gathering on workstations and servers.
• Administer Microsoft Active Directory on-premises and Azure (hybrid), including account provisioning, management, and group management.