This site uses cookies. To find out more, see our Cookies Policy

IS Security (General)- Intermediate in St. Louis, MO at APEX Systems

Date Posted: 4/16/2019

Job Snapshot

Job Description

Job #:  960546

Apex systems is looking to employ a IS Security (General)- Intermediate in St. Louis, MO

If interested, please send an updated resume to romiller@apexsystems.com 

DESCRIPTION:

  • Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems.
  • Evaluates and tests hardware, firmware and software for possible impact on system security.
  • Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security.
  • Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents.
  • Investigates and resolves security incidents and recommends enhancements to improve security.
  • Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
  • Collects and compiles historical data on system access and generates reports and analyses.
  • Usually requires 2 to 7 years of previous experience.
  • Position requires a flexible work schedule; if and when incidents occur.
  • Experience with security information and event management SIEM applications (SPLUNK, ArcSite, etc.); and experience with Endpoint Detect and Response and Endpoint Protection Platform.

ADDITIONAL INFO:

  • Reviewing network and system logs to identify malicious behavior.
  • Investigate events/alerts generated by a SIEM and security monitoring devices.
  • Use security tools to investigate event/alerts: Splunk, Tanium, CrowdStrike, Netskope, among other tools and services.
  • Developing and executing potential Threat Hunting Operations.
  • Provide analytical support during cyber incidents.
  • The position is assigned to our Hunt team; however, the individual will assist the Security Monitoring team with investigating alerts.
  • The percentage of time is not constant but I would estimate in a week’s time 25 percent assist Security Monitoring and 75 percent plan and conduct Hunt operations.
  • Will work with Hunt Team, CIRT, Investigations, among other teams.

MUST HAVES:

  • Experience with security information and event management SIEM applications (SPLUNK, ArcSite, etc.); and experience with Endpoint Detect and Response and Endpoint Protection Platform.
  • Be inquisitive (it’s Threat Hunting, there often are no indicators with which to work); independent operator, experience with data (through Splunk, EDR, EPP).

REQUIRED TECHNICAL SKILLS:

  • Troubleshooting, understanding of the Cyber Kill Chain, SIEM, EDR, and EPP.

NICE TO HAVES:

  • Experience with programming languages like Python, Powershell, VBScript, Bash, building metrics, Incident Response Platform (like IBM Resilient)
  • Experience with ATT&CK
  • Open to candidates who are willing to relocate.
  • No certifications required.
  • Degree not required.

 

 

 

 

 

 

 

 

EEO Employer

Apex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at 844-463-6178