Apex Systems, Inc. Security Analyst - Cyber Incident Response 1st Shift in Chicago, Illinois
This job was posted by https://illinoisjoblink.illinois.gov : For more information, please see: https://illinoisjoblink.illinois.gov/ada/r/jobs/6423194 Title: Security Analyst –Cyber Incident ResponsenLocation: Chicago, ILnHours of Support: Shift 1 - 6:00 AM to 2:30 PMnRoles and Responsibilities:nCyber Incident Responder well-versed in security operations, cyber security tools, intrusion detection, and secured networks. Serve as an expert responsible for providing network and security operations technical analysis, assessment and recommendations in the areas of real-time security situational awareness, operational network system and applications systems security monitoring.nDuties and responsibilities may include, but are not limited to:nUtilize various security tools (e.g., Splunk, Splunk Enterprise Security, Palo Alto Networks, SourceFire, Cisco ASA) to identify potential incidents, network intrusions, and malware events, etc. to ensure confidentiality, integrity, and availability of VA architecture and information systems are protectednTrack investigations in Help Desk systems including Remedy and Service NownUtilization of Splunk ES SIEM to respond to incidents detected on the VA networknReviewing and analyzing log files to report any unusual or suspect activitiesnUtilize incident response use-case workflows to follow established and repeatable processes for triaging and escalatingnGenerating trouble tickets and performing initial validation and triage to determine whether incidents are security events.nComplete investigations in to identified cyber events and hand over as appropriatenFollowing established incident response procedures to ensure proper escalation, analysis and resolution of security incidentsnDevelop and maintain Incident Response procedures and Security SOPs.nAnalyzing and correlating incident event data to develop preliminary root cause and corresponding remediation strategynCommunicate effectively to all customers and stakeholdersnWork with other contract teams to effectively respond to cyber incidentsnProviding technical support for new detection capabilities, recommendations to improve upon existing tools/capabilities to protect the network and High Value AssetsnBasic Qualifications:nTo be considered for this position, you must minimally meet the knowledge, skills, and abilities listed below:n Bachelor’s degree Computer Science, Information Systems Management, Engineer or related field and minimum 2 years of experience. Additional 4 years of experience will be accepted in lieu of the degree.n2 years of experience with advanced cyber security tools, network topologies, intrusion detection, PKI, and secured networks. Understanding of NIST SP 800-61, US CERT and Office of Management and Budget (OMB) standards. Interpreting and implementing cyber security regulations.nCertification in one of the following (Security+, Network+, VA CSP, CISSP, C-EH) or 2 years of additional experience overrides certification requirement.nExcellent written skills for preparing reports and briefings.nExcellent analytical and problem solving skillsnMust be able to obtain a Public Trust clearance (Veterans Affairs High Security Investigation)nPreferred Qualifications:nCandidates with these desired skills will be given preferential consideration:nBachelor’s DegreenKnowledge of VA culture, mission, and IT environmentnCertification in one of the following (Security+, Network+, VA CSP, CISSP, C-EH)nEEO EmployernApex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at email@example.com or 844-463-6178.nVEVRAA Federal ContractorWe request Priority Protected Veteran & Disabled Referrals for all of our locations within the state.We are an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic. The EEO is the Law poster is available here.