Sr. Principal Specialist, Threat Detection & Security Monitoring

posted on December 14, 2021

Job Description

Location: United States

Duration: Permanent

Responsibilities: 

  • #LI-Remote
  • Bachelors degree with 9 years of experience or equivalent experience
  • Expert level knowledge and understanding of the attack chain; adversary tactics, techniques, and procedures; and emerging threats and vulnerabilities
  • Expert level understanding of what telemetry and visibility exists from various security and network product (i.e. firewalls, network IPS, AV, EDR, host logs, netflow, secure email gateways, etc)
  • Expert level knowledge of host and network-based security products and how those products affect exploitation and reduce vulnerability
  • Expert level ability to develop or recommend analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
  • Expert level knowledge of SIEM’s, how they work, how their value can be maximized and leveraged to mature monitoring and detection processes
  • Expert level ability to bring multiple datasets together and apply analytical concepts in order to achieve data correlation for solving more complex problems
  • Demonstrated skills in identifying hidden patterns and relationships within data sets
  • Demonstrated skills in developing data models
  • Demonstrated skill in transformation analytics (aggregation, enrichment, processing) and data pre-processing (e.g. imputation, dimensionality reduction, normalization, transformation, extraction, filtering, smoothing).
  • Demonstrated ability to work well with customers and meet customer’s needs
  • Demonstrated ability to function in a collaborative environment, seeking continuous consultation with other analysts, experts, and teams to improve analytical and technical expertise.
  • Demonstrated skill in identifying cyber threats that may impact the organization and/or third parties, and being able to think like a threat actor
  • Demonstrated skills to create and maintain up-to-date planning documents, as well as tracking and measuring services/production.
  • Strong interpersonal skills required to establish and maintain positive relationships, as well as strong communication skills in the form of clear and concise reporting and delivering presentations to technical and non-technical customers.
  • Minimum 9 years of experience in an information security discipline, (preferably inclusive of threat intelligence, incident response, and/or SOC)

 

More jobs at Mediant Health Resources

Analyst/Developer

posted on December 8, 2021

Business Analyst

posted on January 3, 2022