Incident Response Analyst in Lansing, MI at APEX Systems

Date Posted: 6/14/2018

Job Snapshot

Job Description

Job #:  858471

For more information on this opportunity, please contact APEX at 248.234.7006 or mbrinkman@apexsystems.com

 

Working Title of Position:  Incident Response Analyst 

Job Description:

  • Identify security issues and risks associated with security events and manage the incident response process.
  • Participate in the incident response and investigation process for identified security events.
  • Perform network and system forensics in response to security incidents.
  • Optimize and customize security-monitoring tools to improve detection.
  • Hunt for signs of APT activities.
  • Maintain and update the security operational workflow.

Skills Matrix – Required and minimum 5 years of experience:

  • In-depth knowledge of security monitoring and incident response.
  • Knowledge of conducting security investigations.
  • Experience with using and customizing SIEM products.
  • Solid understanding of network protocols and architecture.
  • Demonstrated experience with performing digital forensics and incident response using industry leading tools.
  • Experience with network intrusion detection and analysis tools such as Bro, Suricata, Sourcefire, Snort and Wireshark.
  • Experience solving problems with scripting languages such as Perl, Python, PowerShell or Bash.
  • Demonstrated experience operating information security tools is required.
  • Demonstrated experience integrating information security tools is required.
  • Understanding of the tactics, techniques and procedures of advanced attackers
  • Ability to leverage multiple forms of communication to articulate complex concepts to both technical and non-technical staff, including senior management.

Desired Skills

  • SANS Training
  • EnCase Certified Examiner (EnCE)
  • Offensive Security Certified Professional (OSCP)
  • CISSP