AboutWeb is currently seeking an IDS Analyst for support to a large Security Operations Center in Washington, DC . The IDS Analyst will monitor the security of the network using a plethora of raw data. The Security Analyst will be responsible for technical and administrative escalations of issues that are beyond the scope of Tier 1 Analysts. Examples of such escalations include false positive determinations for complicated network traffic. This role will provide the candidate with a quick, but comprehensive grasp of technical situations, and give them the ability to apply this expertise in clear and appropriate communications with client customers according to the policy guidance developed by the customer's office. The SOC Analyst will also be responsible for creating shift reports and reviewing shift reports of others for completeness and technical accuracy.
Candidates will need at least 4+ years of hands on incident response in a Security Operations Center environment and familiarity with modern malware techniques including rootkits, trojans, browser helper objects and peer-to-peer software.
In depth understanding of intrusion prevention appliances and signatures, content filtering, and ASA firewallsas well as familiarity with web application security attacks including sql injection, cross-site scripting, and remote file inclusion.
Experience with Splunk, ArcSight, Enterasys Dragon, Cisco SSM, Nessus, and/or Imperva WAF are pluses.
Experience with malware reverse engineering is a strong plus.
Any scripting experience in perl, php, or ASP.Net are also pluses.
Please send all resumes and salary requirements to firstname.lastname@example.org for immediate consideration.
- 2 years ago - save job