Hardware & Software Asset Analyst

Information Technology Raleigh, North Carolina Job ID: 2017-862


About the Team

STG, Inc. is a leading provider of mission-critical technology, cyber and data solutions to more than 50 US Federal Agencies. STG has been consistently listed amongst Washington Technology’s Top 100 Government Technology Contractors. We provide performance-oriented solutions in cyber security and secure information systems, software development, systems and services, and intelligence and analytics. We serve our customers at more than 250 locations at home and overseas.

About the Job

STG, Inc. is seeking a Hardware & Software Asset Analyst to add it its team in support of the security team of a major nationwide organization, with thousands of sites, to continually improve its complex multi-protocol nationwide network.  A network application security engineer who understands how the Hardware / Software Asset Management program of a large enterprise should work is needed to support the team. The ideal candidate for this job will be an experienced information security practitioner who is goal-oriented and strives to exceed expectations.

This position is located in Morrisville, North Carolina.

Responsibilities Include

  • Candidate will assess network threats such as computer viruses, exploits, and malicious attacks
  • Determine true threats, false positives and network system misconfigurations and provide solutions in a timely manner
  • Serve as a Subject Matter Expert in the analysis of tool outputs and providing recommendations for improving the overall security posture of the client
  • Conduct heavy analysis of asset data to aggregate multiple data inputs and put assets into context to identify vulnerabilities and potential gaps

Required Skills

  • Minimum of 8 years relevant work experience
  • Strong Cisco ISE experience with developing policies for enforcement services, NAC, developing monitoring, and reporting of notable items for security and operational services.
  • Experience with endpoint management systems (e.g., Tanium, SCCM, BigFix, Symantec Endpoint)
  • Strong Splunk experience in creating effective dashboards, hunting cyber threats using event correlation, and acting on machine intelligence to remediate vulnerabilities and risk to the enterprise
  • Netflow analytics for compliance and threat hunting
  • Work with suppliers of data (e.g., WonMug, Cisco ISE, StealthWatch) to maximize efficiency and accuracy of data feeds into Splunk. Advise suppliers of potential features in their tools that could be activated to improve security (e.g., TrustSec and Security Group Tagging in ISE)
  • Ability to map application components to identify security problems and provide solutions
  • Analyze data imports into Splunk for accuracy and completeness; compare data from the various network security tools to identify overlaps and search for gaps.
  • Conduct initial triage assessments of findings from network security tools
  • Engages with other internal and external forces to get and share information to improve processes and security posture
  • Troubleshoots application connectivity and performance through log analysis and network captures, etc.
  • Ability to obtain a security clearance

Desired Skills

  • Bachelors Degree in Information Technology, Computer Science, or related field.
  • Experience with Flexera/B|DNA, Splunk, BMC Atrium, ServiceNow, and enterprise network infrastructures
  • Experience with ForeScout CounterACT, Cisco ISE, MobileIron, and Tanium
  • Project planning experience
  • Excellent writing skills
  • Microsoft office suite of applications

The employment policy of STG, Inc. is to provide equal employment opportunity for all qualified employees and applicants without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status and to ensure affirmative action is taken in fulfillment of this policy.