Genesis10
Sr. Security Analyst
Genesis10, Atlanta, Georgia, United States, 30383
Genesis10 is currently seeking a Sr. Security Analyst Consultant with our client in the transportation industry in their Atlanta, GA location. This is a 12 + month contract position.
Description:
Seeking a Sr. Security Analyst Consultant
Our client is on a journey to becoming the best IT organization in the airline industry, a journey of transformation. They are changing the way we do business from top to bottom as we strive to create meaningful and innovative solutions and are looking for team members to help us realize our vision.
Responsibilities:Develop and execute security incident response plans and cyber forensic investigations for investigating all reported security incidentsDevelop comprehensive incident reports and investigation summariesDevelop and collect intelligence to proactively detect and identify high-confidence threats to the brand, service infrastructure and enterprise users and systemsResponsible for analyzing/validating security control requirements and tuning, defining the mitigation rules, scripting and performing changes or mitigating attacks, and assisting with troubleshooting support related to any issues which may arise from security detection or protection technologiesAssist with reviewing existing tools, applications, and processes to help strengthen and optimize current security capabilities, as well as identifying any gaps or technical solutions to further enhance the team's effectivenessCommunicate problems and solutions verbally and in written form to peers and managementCompliance and governance: help achieve compliance, identify compliance initiatives, and promote appropriate security policiesLead analysis and review security events for anomalous activity, collaborate with respective peer groups to take appropriate action to safeguard company information assets against current and foreseen threatsLead the exploration of practical security solutions to address emerging threats and compliance requirements, including design and implementation of recommended solutionsLead development of information security technology tasks and projectsAbility to communicate with all levels of managementGenerate, coordinate, and maintain project plansDevelops cost analysis estimates for information security tasks and projectsKeep project plans updated as requiredInteract with customers as required by project objectivesUnderstanding of business process as it relates to information securityDefine, redesign, and document security processes and proceduresCoordinate the development and delivery of awareness for information securityWork with resource owners to determine appropriate security policies for securable resourcesConsult with IT staff to evaluate, select, install, and configure hardware and software systems that provide appropriate security functionsAssist resource owners in understanding and responding to security failures/problemsAssist in determining cause of security related events and identify potential security related eventsCommunicate to appropriate personnel on normal and exception processing of security authorization requests and/or breachesAssist with documentation of security policies; maintain resource classification, may be required to present on security status, project status, and security training to management and IT personnel as neededAssist in proactively protecting the integrity, confidentiality, and availability of information in the custody of or processed by the companyConsult with business units to ensure selection and use of realistic enforcement mechanismsAid in review of security policies and auditing of logsAssist in developing and maintaining effective disaster recovery plans, processes, and proceduresAssist inResearch, evaluate, design, test, recommend, and plan implementation of new or improved information security research, evaluate, design, test, recommend, and plan implementation of new or improved information security technologyTrain information owners in the implementation of necessary computer security controls
Requirements:
8+ years' experience with Incident ResponseExperience in a 24x7 global enterprise, preferably in the Financial industrySANS GIAC certificationsExperience with cloud platformsExperience managing or maintaining malware analysis sandboxes,Knowledge of malware analysis toolsPython and/or PowerShell scriptingKnowledge of Exabeam suite of products or other SIEM toolsExcellent communication and interpersonal skillsUnderstanding of the business and the ability to assess and address risk without negatively impacting the businessAbility to identify and analyze malicious codeIn depth understanding of Windows operating systemsAbility to evaluate exploit code in relationship to existing security controls
Desired skills:
Strong knowledge of networking technologies (TCP/IP, HTTP, SMTP, etc.)Strong knowledge of web application vulnerabilities and solutionsStrong knowledge of Unix & Linux operating systemsStrong knowledge of the functions of various security infrastructure, including firewalls,Intrusion Prevention Systems, Proxy Servers, Security Event Managers, VPNsStrong knowledge of web application technologies (HTML, JavaScript, etc.)Ability to identify vulnerabilities in networks, systems and applications using COTS tools and manual processesGeneral knowledge of network and systems forensicsIn depth knowledge of incident response processes and proceduresGeneral knowledge of threat intelligenceAbility to provide 24-hour on-call support on a rotating basisCISSP Certified
If you have the described qualifications and are interested in this exciting opportunity, please apply!
About Genesis10:
Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:* Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
* The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
* Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
* Behavioral Health Platform
* Medical, Dental, Vision
* Health Savings Account
* Voluntary Hospital Indemnity (Critical Illness & Accident)
* Voluntary Term Life Insurance
* 401K
* Sick Pay (for applicable states/municipalities)
* Commuter Benefits (Dallas, NYC, SF)
* Remote opportunities available
For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Description:
Seeking a Sr. Security Analyst Consultant
Our client is on a journey to becoming the best IT organization in the airline industry, a journey of transformation. They are changing the way we do business from top to bottom as we strive to create meaningful and innovative solutions and are looking for team members to help us realize our vision.
Responsibilities:Develop and execute security incident response plans and cyber forensic investigations for investigating all reported security incidentsDevelop comprehensive incident reports and investigation summariesDevelop and collect intelligence to proactively detect and identify high-confidence threats to the brand, service infrastructure and enterprise users and systemsResponsible for analyzing/validating security control requirements and tuning, defining the mitigation rules, scripting and performing changes or mitigating attacks, and assisting with troubleshooting support related to any issues which may arise from security detection or protection technologiesAssist with reviewing existing tools, applications, and processes to help strengthen and optimize current security capabilities, as well as identifying any gaps or technical solutions to further enhance the team's effectivenessCommunicate problems and solutions verbally and in written form to peers and managementCompliance and governance: help achieve compliance, identify compliance initiatives, and promote appropriate security policiesLead analysis and review security events for anomalous activity, collaborate with respective peer groups to take appropriate action to safeguard company information assets against current and foreseen threatsLead the exploration of practical security solutions to address emerging threats and compliance requirements, including design and implementation of recommended solutionsLead development of information security technology tasks and projectsAbility to communicate with all levels of managementGenerate, coordinate, and maintain project plansDevelops cost analysis estimates for information security tasks and projectsKeep project plans updated as requiredInteract with customers as required by project objectivesUnderstanding of business process as it relates to information securityDefine, redesign, and document security processes and proceduresCoordinate the development and delivery of awareness for information securityWork with resource owners to determine appropriate security policies for securable resourcesConsult with IT staff to evaluate, select, install, and configure hardware and software systems that provide appropriate security functionsAssist resource owners in understanding and responding to security failures/problemsAssist in determining cause of security related events and identify potential security related eventsCommunicate to appropriate personnel on normal and exception processing of security authorization requests and/or breachesAssist with documentation of security policies; maintain resource classification, may be required to present on security status, project status, and security training to management and IT personnel as neededAssist in proactively protecting the integrity, confidentiality, and availability of information in the custody of or processed by the companyConsult with business units to ensure selection and use of realistic enforcement mechanismsAid in review of security policies and auditing of logsAssist in developing and maintaining effective disaster recovery plans, processes, and proceduresAssist inResearch, evaluate, design, test, recommend, and plan implementation of new or improved information security research, evaluate, design, test, recommend, and plan implementation of new or improved information security technologyTrain information owners in the implementation of necessary computer security controls
Requirements:
8+ years' experience with Incident ResponseExperience in a 24x7 global enterprise, preferably in the Financial industrySANS GIAC certificationsExperience with cloud platformsExperience managing or maintaining malware analysis sandboxes,Knowledge of malware analysis toolsPython and/or PowerShell scriptingKnowledge of Exabeam suite of products or other SIEM toolsExcellent communication and interpersonal skillsUnderstanding of the business and the ability to assess and address risk without negatively impacting the businessAbility to identify and analyze malicious codeIn depth understanding of Windows operating systemsAbility to evaluate exploit code in relationship to existing security controls
Desired skills:
Strong knowledge of networking technologies (TCP/IP, HTTP, SMTP, etc.)Strong knowledge of web application vulnerabilities and solutionsStrong knowledge of Unix & Linux operating systemsStrong knowledge of the functions of various security infrastructure, including firewalls,Intrusion Prevention Systems, Proxy Servers, Security Event Managers, VPNsStrong knowledge of web application technologies (HTML, JavaScript, etc.)Ability to identify vulnerabilities in networks, systems and applications using COTS tools and manual processesGeneral knowledge of network and systems forensicsIn depth knowledge of incident response processes and proceduresGeneral knowledge of threat intelligenceAbility to provide 24-hour on-call support on a rotating basisCISSP Certified
If you have the described qualifications and are interested in this exciting opportunity, please apply!
About Genesis10:
Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:* Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
* The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
* Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
* Behavioral Health Platform
* Medical, Dental, Vision
* Health Savings Account
* Voluntary Hospital Indemnity (Critical Illness & Accident)
* Voluntary Term Life Insurance
* 401K
* Sick Pay (for applicable states/municipalities)
* Commuter Benefits (Dallas, NYC, SF)
* Remote opportunities available
For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.