Previous Job
Previous
Security Analyst
Ref No.: 18-11695
Location: McLean, Virginia
Known for being a great place to work and build a career, CLIENT provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you're as passionate about your future as we are, join our team.
CLIENT is currently seeking an Sr. Associate, Security Analyst, to join our CLIENT Technology Organization.
Responsibilities:
  • Develop and tune supporting content for security tools (e.g. dashboards, alerts, reports, rules), including but not limited to the configuration and monitor security information and event management (SIEM) platform and endpoint detection tools for security alerts
  • Provide support to CSIRT, as needed, to assist analysts with detection and response to IT security incidents
  • Support all phases of incident response life cycle: analysis, containment, eradication, remediation, recovery through development of content / automation tools
  • Monitor for external threats, assessing risk to the CLIENT environment and support risk mitigation and response activities
  • Evaluate external threat intelligence sources related to zero day attacks, exploit kits and malware to determine organizational risk and improve threat detection rules
  • Stay abreast of the latest information security controls, practices, techniques and capabilities in the marketplace, as well as evolving threats
Qualifications:
  • Minimum of three years of security monitoring experience utilizing scripting, Unix and open source security tools in an enterprise environment
  • Bachelor's degree from an accredited college or university
  • Functional knowledge in shell/bash scripting and/or Python
  • Understanding of network and system intrusion and detection methods and mitigation techniques
  • Hands on network and systems administration skills with Linux and Windows, including Active Directory competence; Splunk experience a plus
  • US citizenship required