Business Initiative/Purpose: (Goal, Business Impact, Accomplishments from the work)
Cyber Incident Response.
Bachelor Degree: (Required, Preferred or Not Required)
Preferred.
Role Responsibilities: (what they will be doing)
We are seeking a dynamic and collaborative individual who thrives in a fast-paced, people-centric environment to join our Cyber Fusion Center (CFC).
As a Cyber Response Specialist, you'll play a key role in protecting our organization by helping ensure effective incident response. Your ability to communicate clearly, build relationships, and energize others will be as important as your technical expertise. This position will be instrumental in maintaining a number of important documents, knowledge base entries, investigation guides, and response guides. We're seeking someone who enjoys teammwork, loves learning, and is motivated by tackling problems in collaboration with others.
The Cyber Response Specialist is an office-based role within the 24/7 Cyber Fusion Center (CFC) organization. This role will be specialized in learning about our perimeter and will advise on ways to improve monitoring and incident response around perimeter attacks.
This role will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS alerts, firewalls, network traffic logs, cloud platforms, and SOAR solutions) to analyze events that occur within their environments for the purposes of mitigating threats in mostly unstructured and complex situations. Individuals in this role are creative, proactive, and highly skilled in log, identity, cloud, network, and root cause analysis.
Experience working in highly collaborative face-to-face situations with different stakeholders across an organization is important.
Must Have Skills/Prior Experiences: (Vendor should not submit any candidate that does not have these skills/prior experience.)
The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or related field of relevant education, certification, or related training.
Two years of experience in Cybersecurity, Information Technology, or related work.
Knowledge of one or more cloud platforms and cloud security.
Knowledge of general information technology (IT) and cybersecurity.
Knowledge of computer networking concepts and protocols, and network security methodologies.
Knowledge of network traffic analysis and packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump).
Knowledge of operating systems, including Windows/Unix ports and services.
Knowledge of modern identity and access management concepts.
Knowledge of phishing tactics and techniques.
Knowledge of advanced cyber threats and vulnerabilities.
Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
Knowledge of incident response and handling methodologies.
Knowledge of threat hunting techniques.
Knowledge of countermeasures to address a variety of threats.
Knowledge around leveraging automation, ML, and/or AI.
EEO
"Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans."