Cambium Assessment · 2 days ago
Senior Information Security Operations Specialist
Maximize your interview chances
E-LearningEducation
H1B Sponsor Likely
Insider Connection @Cambium Assessment
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Utilize and optimize monitoring of network security monitoring processes and tools. Examples include Cylance EDR tools on servers, AWS Network firewalls, Cloudflare DDoS, intrusion detection tools, SIEM log analytics, and AWS security monitoring tools.
Perform as a Security Operations Center (SOC) subject matter expert for responding to endpoint threat alerts.
Monitor and follow up on IDS alerts.
In concert with internal and vendor technical experts, perform hands-on administration of security tools sufficient to maintain and improve capabilities.
Collaborate with network and systems administrators to ensure that security solutions configured and maintained in accordance with security best practices and industry standards and are integrated into the organization’s overall security posture.
Lead and perform security investigations: Collect and preserve forensic information, identify IOCs, document investigations, and facilitate resolution with engineering, business and technical subject matter specialists as directed.
Engage in continual security improvement. Assist in the further development of our full suite of cyber capabilities and tools to detect, respond, and better defend our networks, systems, and information.
Perform cyber and technical threat analyses. Keep up to date with current events and new threats in data security. Process and analyze cyber threat intelligence data and compile standard and ad-hoc reports.
Communicate security findings. Prepare regular reports to team members and management of activities performed and actions needed.
Experience in threat modeling, detection and IR required.
Knowledge of forensics, data collection, chain of custody preferred.
Must have knowledge of security frameworks such as NIST, ISO27001, CIS Top 18 controls.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
3+ years relevant experience in a Security Operations Center and/or dedicated security response team.
Bachelor’s Degree in computer science, engineering, Information Systems or related technical field
Existing Information Security Certification(s) such as CISSP, CISA, GIAC, CompTIA Security+, CCSP, AWS security certifications, Sysadmin certifications
Strong working knowledge and hands-on experience of security controls and processes for monitoring, investigation, and response: EDR, Network routing, Firewalls, DDoS, IDS, AWS security hub, SIEM logging and analytics, authentication and authorization mechanisms; vulnerability scanning and monitoring
Strong knowledge of threat vectors, threat modeling, and ransomware techniques and exploits
Demonstrated ability to effectively use specialized security tools at an advanced level to monitor for threats in cloud (AWS) environments.
Demonstrated ability to leverage expertise in cybersecurity to detect, respond, contain and recover from incidents.
Excellent communication, presentation, and documentation skills
Preferred
Knowledge of forensics, data collection, chain of custody preferred.
Experience in threat modeling, detection and IR required.
Company
Cambium Assessment
Cambium Assessment is an education and training center.
H1B Sponsorship
Cambium Assessment has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (10)
2022 (17)
2021 (15)
2020 (65)
Funding
Current Stage
Late StageCompany data provided by crunchbase