Previous Job
Previous
Cyber Security Engineer
Ref No.: 18-19310
Location: Atlanta, Georgia
Allstates Consulting Services is seeking two Cyber Security Engineers to assist our client's Incident Response and Forensics team on a long-term contract in Atlanta, GA (Buckhead area).

Our client is currently integrating a number of disparate security-related projects into a single program to support client wide Cyber Security objectives. The Cyber Security Engineer will assist with Incident Response and Forensics capability by:
  • Notify any network security corrective actions and work with Information
  • Technology and other staff to address security issues accordance with Cyber Security Strategy.
  • Supporting the existing efforts and add new projects to increase the Client's cybersecurity profile and evaluate potential cybersecurity zones against evolving APTA standards for the Operationally Critical Security Zone (OCSZ).
  • Assist with the monitoring of all networks, IPS\IDS's, and security tools for network intrusions, unauthorized access and indicators of compromise.
  • Assist with incident response (IR) efforts.
  • Assist with the detection, identification, response, containment and remediation of information security incidents. Research and distribute cyber threat intelligence to protect all Authority networks.
  • Provide information security metrics and key performance indicators (KPI's). Assist the Security Operations Team when appropriate.
QUALIFICATIONS
  • 3-5 years (minimum) of Information Security experience required
  • Any Industry certifications such as CISSP, CCE, GCFA, GNFA, GCIH, GCIA
  • Incident Response experience required
  • Security Information and Event Management (SIEM) tools such as Splunk, McAfee ESM, LogRhythm is required
  • Forensics and Computer forensics tool experience (i.e. Encase, FTK, X-Ways Forensics or IEF) is a plus.
  • Strong technical, troubleshooting and analytical skills required
  • Reverse engineering of Malware a plus.

Deliverables
  • Attend Enterprise Security Risk Management (ESRM) team meetings.
  • Carry out assignments to improve cyber security of all networks
  • Assist in defining and building the incident Response and Security Operations program under the office of Enterprise Security Risk Management
  • Monitor networks and Information Event Monitoring (SIEM) tools to identify Indicators of Compromise (IOC's)
  • Receive and distribute cyber threat intelligence to protect all networks
  • Detect, respond, identify, contain and remediate all information security incidents
  • Perform forensics investigations when necessary to determine compromise or malicious activity
Provide information security metrics and key performance indicators (KPI's)
Additional Details:

Consultant should submit a weekly Progress Report in Oracle inclusive of all deliverables completed in this contract, along with the time that is billed for the week.
Consultant will provide monthly Status Report to the Project Manager detailing their milestones, challenges and significant updates.
This is a 37.5 hour per week work week onsite; 1400 +/- hour effort over the next 9 months (until June 30th) w/ likely extension year-to-year.

Consultant
must pass a thorough background check and polygraph test, before starting