Mindlance is a national recruiting company which partners with many of the leading employers in the Life Sciences, IT, and Financial Services sectors, feel free to check us out at http://www.mindlance.com.

Job Title: Security Risk Assessment Specialist/ Security Analyst
Location: Hopewell, NJ
DURATION:- 6+ Months
Pay Rate: Best in the market


Job Overview:

Seeking an experienced advanced security analyst to serve as a consultant administering and using network security tools in a CIRT/SOC environment. Primary tools will include RSA Security Analytics (Net witness), McAfee Enterprise Security Manager (Nitro) SIEM, and FireEye Mandiant Intelligent Response.

Responsibilities:


This team is responsible for monitoring, analyzing, categorization, configuration and tuning of the SIEM application and related traffic collection, alerting and reporting capabilities. This team develops and implements new signatures and policies to optimize the SIEM correlation engine and streamline the log management capabilities. Recognizes and identifies potential threats to the network and systems connected to the network from the Internet and Intranet. Operates, documents, and maintains security controls. Monitor for, and investigate potential security breaches. The team also reviews internal and external network traffic to create policies that intercept Malware and other network attacks using RSA Security Analytics (Netwitness) and other network IDS capabilities. Additionally the team is responsible for the infrastructure support, configuration, and use of the FireEye Mandiant Intelligent Response appliances, to detect and respond to advanced threats.


Build correlation rules & alerts for the McAfee Enterprise Security Manager (Nitro) SIEM and RSA Security Analytics (Net Witness) products to identify malicious activities
* Support infrastructure of the FireEye Mandiant Intelligent Response appliances
* Create & run host-based Indicator of Compromise (IoC) sweeps using FireEye Mandiant Intelligent Response
* Analyze and respond to FireEye Mandiant Intelligent Response hit reports
* Third-level support to review, triage, analyze, and respond to alerts received in SIEM
* Proactively review network data packets for potential attacks
* Malware analysis as appropriate
* Support forensic investigations as appropriate


 
Work Experience/ Skills REQUIRED
•    Minimum of 5 years of Infosec experience, preferably in a SOC environment
•    Minimum of 5 years but prefer 10+ years of Networking, TCP/IP, switching/routing/firewall experience.
•    Minimum of 2 years but prefer 5 years of Network analysis, with a focus on security, tcpdump, windump, wireshark/ethereal.
•    Implementation and/or administration of Netwitness or similar toolset
•    Implementation and configuration of a SIEM environment, including creating and tuning SIEM correlation rules

Other requirements
•    Incident Response
•    Event/alert monitoring
•    SIEM experience
•    Experience with CVEs, patch analysis, threat analysis
•    Experience with forensics,
•    Written and verbal communication at a level appropriate for customer interaction/visibility
•    Bachelor*s degree in a technical discipline is strongly preferred but will look at candidates with equivalent experience

Helpful industry certifications
•    CISSP, SANS GIAC (GCIA, GCIH, GCFA, GNFA), CCIE, CCNA, CEH, Security+, Network+, and other security vendor specific certs.

Additional preferred experience
•    Nmap, nessus, metasploit, NetWitness, Arcsight, IPS/IDS, backtrack, knoppix, Bro IDS

Thanks & Regards,                                                                                        
Shipra Chauhan | Team Recruitment | 732 201 8857