Good morning Partners, Hope you are doing good!
Please let me know, if you have any suitable match for below contract. UNIVERSAL Technologies is seeking a experienced *Threat Analyst* a long-term position in Brooklyn, NY. *Client: NYC, DoITT* *Duration: 18 months plus (on going contract)* *Working hours: 35 hours/week* *NOTE: In person interview required follows by telephonic round.* *MANDATORY SKILLS/EXPERIENCE:* - At least 8 years of experience in a *Threat Management/SOC/IR environment;* - Excellent verbal and oral communication skills; - Must have *knowledge of information security principles, practices and procedures;* - Strong understanding of *network and host technologies;* - Must have experience *applying techniques for detecting host and network-based intrusions using intrusion detection methods and technologies;* - Experience with *SIEM technologies, malware analysis and mitigation techniques* - Ability to *apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation);* - *Must be able to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute);* - Ability to investigate and solve complex problems. *DESIRABLE SKILLS/EXPERIENCE:* - Experience with host level forensics - Ability to conduct in-depth malware analysis - Strong technical writer *SCOPE OF SERVICES:* - Lead SOC detection and response activities during shift; - Coordinate SOC operations with SOC Manager; - Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources; - Coordinate with enterprise-wide cyber defense staff to validate network alerts; - Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level; - Document and escalate incidents (including event’s history, status, and potential impact for further action) that may cause ongoing and immediate impact to the environment; - Perform cyber defense trend analysis and reporting; - Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the effectiveness of an observed attack; - Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy; - Plan and recommend modifications or adjustments based on exercise results or system environment; - Provide timely detection, identification, and alerting of possible attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities; - Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity; - Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, effects on system and information; - Determine tactics, techniques, and procedures (TTPs) for intrusion sets; - Examine network topologies to understand data flows through the network; - Recommend computing environment vulnerability corrections; - Identify and analyze anomalies in network traffic using metadata; - Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings); - Work with stakeholders to resolve computer security incidents and vulnerability compliance; - Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans. *All Candidates must be able to attend an IN-PERSON Interview.* UNIVERSAL Technologies is an Equal Opportunity Employer. -- *Appreciate your response to [email protected] <[email protected]>* Regards, Sunil Reddy *UNIVERSAL Technologies* 28 Madison Avenue Ext., Albany, NY 12203 Office: 518-463-6149 Ext: 100 -- You received this message because you are subscribed to the Google Groups "CorptoCorp" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/corptocorp. To view this discussion on the web visit https://groups.google.com/d/msgid/corptocorp/CANw8d7XZNDW7GXA5VLF1iZXrBPoBc1PgqnT2WWwGMP_ac-StQw%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
