Cybersecurity Incident Response Specialist - Philadelphia, PA
Apply NowCompany: Georgia IT, Inc.
Location: Philadelphia, PA 19120
Description:
Job Title : Cybersecurity Incident Response Specialist
Location : Philadelphia, PA
Position Type : Full Time
Salary : DOE $115K/Year
Interview Process : Phone followed by Face to Face
Green Card, U.S Citizens
SUMMARY:
This position will be responsible to perform and lead the response process for Information Security and Privacy incidents, using IT Risk Management products and services including access control systems, network and perimeter controls, log and event correlation systems, and system and network component baselining. The position will monitor the output from systems designed to protect the Confidentiality, Integrity, Availability, Retention and Destruction of information in the Janney environment including servers, network components, individual workstations and controls and protections provided at the perimeter. The oversight of these systems combined with input from our associates and clients will allow the position to evaluate associated risks and develop and lead appropriate short-term responses with input to long term operational solutions. The position will support security aspects of IT projects and tasks which may include the evaluation, testing and integration of new systems and services and will contribute to the policies and processes related to Information Security and Privacy controls and protections. The role will monitor various inputs and indicators of possible security issues and will handle the technical aspects of incident response in the environment, including incident mitigation and root cause analysis to be used to enhance the controls and protections in the environment.
ESSENTIAL FUNCTIONS:
Location : Philadelphia, PA
Position Type : Full Time
Salary : DOE $115K/Year
Interview Process : Phone followed by Face to Face
Green Card, U.S Citizens
SUMMARY:
This position will be responsible to perform and lead the response process for Information Security and Privacy incidents, using IT Risk Management products and services including access control systems, network and perimeter controls, log and event correlation systems, and system and network component baselining. The position will monitor the output from systems designed to protect the Confidentiality, Integrity, Availability, Retention and Destruction of information in the Janney environment including servers, network components, individual workstations and controls and protections provided at the perimeter. The oversight of these systems combined with input from our associates and clients will allow the position to evaluate associated risks and develop and lead appropriate short-term responses with input to long term operational solutions. The position will support security aspects of IT projects and tasks which may include the evaluation, testing and integration of new systems and services and will contribute to the policies and processes related to Information Security and Privacy controls and protections. The role will monitor various inputs and indicators of possible security issues and will handle the technical aspects of incident response in the environment, including incident mitigation and root cause analysis to be used to enhance the controls and protections in the environment.
ESSENTIAL FUNCTIONS:
- Provides ongoing tracking and remediation of security issues, ensuring that tickets are closed and issues are addressed in a timely manner.
- Ensures that changes and enhancements are carried out properly and on a timely basis within corporate security guidelines for change, configuration and patch management. Security oversight of a regimented change and release management methodology includes assigning security and patch updates to follow the firm's change management procedures and a patch release schedule.
- Manages multiple priorities effectively. Maintains clear and efficient communications with management and customers. Provides guidance to peers. Discusses technical subject matter for other IT functions.
- Works closely with development, network, and support teams in implementation of infrastructure components supporting emerging technologies and applications.
- Prepares activity and progress reports ensuring issues are properly escalated and resolved to maintain delivery schedule, project cost, and desired results.
- May perform system performance diagnosis and scalability assessment activities.
- Responds to issue escalation and service interruption as a confident technical resource. May assume technical leadership role in problem resolution and root cause analysis. Will be expected to provide actionable after-incident analysis to ensure root cause issues are logged and remediated.
- Participates in the analysis of emerging technologies and the implementation of systems and architectures based on best practices and audit and compliance issues; this position may assume a technical leadership role in compliance resolution and audit and vulnerability remediation.
- Knowledge of Access Controls, including Active Directory, SQL, Sharepoint and Strong Authentication capabilities.
- Functional knowledge of core Networking concepts including TCP/IP , DHCP, DNS, load-balancing, VLAN segmentation, network traffic capture and analysis (basic level). Strong input for Remote Access and SSL based VPN systems.
- Ability to support appliance-based Authorization and Password Vaulting systems, enterprise level Malware systems and content filtering systems.
- Knowledge of service and software update releases and processes including participation in the patch management program.
- Ability to participate in the Change Management process providing security oversight for changes and modifications to the environment. Use of Group Policy and other Centrally Managed Policy based systems to ensure consistent baselines.
- Experience providing efficient, high quality technical support services to ensure timely response to queries, resolution of problems, and reporting/escalation of issues related to Janney Servers and systems.
- Ability to ensure Janney systems exceed service level targets through the use of reliable products, services, network and system monitoring, penetration and security testing, and sound practices.
- Experience with current best practices in IT standards, principles, and security practices.
- Ability to communicate planning and development status and provide technical documentation for management.
- Excellent communication, interpersonal, and mentoring skills
- Required certifications/registrations:
- Security+ or CISSP strongly suggested.
- Certified Incident Handler certification a plus