IT Security Incident Response Analyst - - Georgia IT Inc.
Ann Arbor, MI
About the Job
Job Title: IT Security Incident Response Analyst
Location: Ann Arbor, MI.
Position Type: 3-6 Months
Rate: DOE (W2/C2C/1099)
Job Details
- Hands-on event triage and analysis of alerts generated as part of a normal SOC workflow.
- Hands-on hunting leveraging sensors, tools, and indicators of compromise to identify previous or active compromise.
- Conduct remediation activities to bring affected systems back to a known-good state.
- Handling threat intelligence from various sources and processing them for use in sensors.
- Mentor junior team members to improve team's ability to detect and respond in the event of a critical incident.
- Hands-on experience responding to incidents in regards to IT security
- Fundament knowledge about common attacks and the ability model threats against a repeatable framework such as a kill chain or attack path.
- Familiarity with threat intelligence sources and tools
- Digital forensics skills in Windows and Linux are a plus
- Scripting skills are a plus
- Vulnerability assessment skills are a plus
- Ability to work independently with periodic guidance from leadership.
- Assist with the tuning of signatures, rules, alerts, parsers, and custom scripts.
- Be available to work weekends or after-hours to provide coverage for L1 triage as necessary
- Be available to participate in after-hours on-call as needed.
Source : Georgia IT Inc.