Security Specialist

Security Washington, District of Columbia Job ID: 2017-434


Description

Duties and Responsibilities:

  • Security Event Monitoring & Response
    • Monitor security events from sources including, but not limited to:
      • SEIM
      • NAC
    • Analyze events filtering for false positives
    • Understanding of basic network services, vulnerabilities and attacks
    • Respond to and escalate events
    • Work with the security team to enhance processes & procedures
    • Contribute to and maintain documented processes around monitoring & response
    • Work closely with information security, IT, risk & governance and facilities teams.
    • Periodically report on metrics
    • Process phishing email escalations from users
    • Correlate events with other known social engineering attempts
  • Security Solutions
    • Manage and maintain tools including, but not limited to:
      • SEIM
      • IDS/IPS
      • Web Application Firewall
      • Anti-Virus/Malware & Endpoint Protection
      • Web content filtering
      • Vulnerability scanning
      • Network Access Control (NAC)
    • Maintain documentation around tools (e.g., SOPs & configurations)
    • Utilize the information security tool’s usage to maximize features
    • Review access requests around content filtering, removable media and local administrative exceptions
  • Work collaboratively with the various technology teams to accomplish security objectives
  • Additional security experience may be gained depending on level of interest and availability:
    • Identify emerging vulnerabilities and evaluate associated risks
    • Assisting in incident response events
      • Security testing (vulnerability scans, aspects of ethical hacking/penetration testing)
      • Detailed configuration reviews
  • Responsible for protecting, securing, and proper handling of all confidential data held by CFTC to ensure against unauthorized access, improper transmission, and/or unapproved disclosure of information that could result in harm to users or clients.

Qualifications:

Though this position requires the selected individual to obtain a customer-specific Public Trust, one must also be eligible to obtain a higher clearance level if required, which includes the foundational qualification of US Citizenship.

 

Minimum of 5 years of technical experience

Bachelors of Science Degree (or equivalent experience)

Technical understanding of AD, OUs, GPOs.

Technical experience with Microsoft Windows 7/10 and Server 2012R2 and above for all server types and roles

Technical experience with Nessus/Retina (Beyond Insight)

Possess knowledge of Risk Management Framework (RMF)

Possess broad knowledge of network architecture, asset and configuration management tools, baseline images and compliance folders.

Possess strong technical skills and analytic abilities, as well as experience performing network security analysis and risk management as it relates to the configuration.

Experience managing security tools noted above

Experience with monitoring and response activities

Knowledge of information security risks, at least technical aspects including working knowledge around remediation

Strong written and oral communication skills. The ability to communicate effectively (clear, concise and professionally) with all levels of personnel

Highly organized and able to process and manage inventories of controls and findings

Excellent analytical and problem resolution skills

Self-starter and able to work independently 

The employment policy of STG, Inc. is to provide equal employment opportunity for all qualified employees and applicants without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status and to ensure affirmative action is taken in fulfillment of this policy.