| Cyber Security Engineer Remote at Remote, Remote, USA |
| Email: [email protected] |
|
http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1115703&uid= From: bhumika, Adifice Technologies [email protected] Reply to: [email protected] Title: Cyber Security Engineer Client: Confidential Location: 100% Remote Visa: USC & GC C2C Duration: 6+ months Requirements: Bachelors degree in computer science, Information Security, or a related field Proven experience as a Cybersecurity or Threat Detection Engineer or Analyst. In-depth knowledge of Splunk Enterprise Security (ES) and Splunk App for Enterprise Security (or similar monitoring technologies) BONUS - Strong understanding of security frameworks, compliance requirements (e.g., HIPAA, HITRUST), and healthcare industry-specific security controls Proficient in developing and optimizing Splunk searches, alerts, dashboards, and reports Thorough knowledge with security information and event management (SIEM) concepts and technologies, plus endpoint detection in SIEM. Experience with scripting languages (e.g., Python, PowerShell) for automation and data manipulation (Automation experience is a significant plus, candidates will be highly considered with this added skill) Excellent problem-solving skills and the ability to analyze complex systems to identify and mitigate potential security threats Experience building custom detection policies and rules to continue the advancement of incident tracking/detection processes to mitigate potential threats Strong communication skills to collaborate effectively with technical and non-technical stakeholders. Experience with Big Query is a plus Experience with Google Chronicle is highly desired Experience with Machine Learning technologies / analytics is a plus Understanding of MITRE ATT&CK framework is a plus Responsibilities This is an opportunity to join a growing, diverse team working to constantly evolve, design, develop, and utilize threat detection solutions for real-time monitoring, detection, and analysis of security events and incidents Collaborate with cross-functional teams to understand business requirements and translate them into effective Splunk (or similar) search queries, alerts, and reports Create and maintain correlation rules, alerts, and dashboards to identify security anomalies, breaches, or other suspicious activities Perform data analysis, anomaly detection, and root cause analysis to identify and mitigate potential threats Stay updated with the latest cybersecurity trends, emerging threats, and best practices in Splunk implementation and security monitoring Work closely with IT and security teams to enhance system performance, fine-tune log collection, and develop mitigation strategies Participate in incident response activities, conduct forensic investigations, and contribute to the continuous improvement of incident handling processes Conduct knowledge sharing sessions and train other team members on Splunk detection techniques and best practices Keywords: information technology green card http://bit.ly/4ey8w48 https://jobs.nvoids.com/job_details.jsp?id=1115703&uid= |
| [email protected] View All |
| 01:24 AM 14-Feb-24 |