Manager of IS Architecture & Compliance supporting security and compliance initiatives at Connecticut Children's health system. Partnering with teams to implement controls and assess risks across IT and business functions.
About the role
- Security Detection Specialist responsible for detecting cybersecurity incidents using advanced security technologies. Analyzing data feeds and leveraging security tools for incident detection and reporting.
Responsibilities
- Analysis of data feeds from various security tools and logs
- Identification of capabilities and quality of these feeds and recommend improvements
- Implementation of new content use cases based on threat intelligence, analyst feedback, available log data, previous incidents
- Perform day to day activities of the content life cycle, including creating new use cases, testing content, tuning, and deprecating content
- Strong documentation and communication skills and ability to maintain associated documentation
- Ability to drive process improvements and identify gaps
- Assist with development of parsers or field extractions to facilitate reliable content development
- Knowledge of programming or scripting fundamentals; Python 3 preferred
- Create, implement, document and maintain novel analytic methods and techniques for incident detection
- Share knowledge, mentor and train junior engineers and analysts
Requirements
- At least five (5) years of related work experience in network operations
- At least two (2) years of experience in network security (Firewall, Network Access, Security controls)
- Advanced knowledge of SIEM correlation engines, reporting capabilities, and dashboards
- Proven expertise using Google Chronicle (SecOps), Splunk, or Microsoft Sentinel
- Advanced knowledge and interest in attacking tools, tactics, and procedures (TTPs)
- Strong understanding of cyber kill chains and the MITRE ATT&CK framework
- Experience with associated detection tools and technologies (IDS, EDR, etc.)
- Fluent in networking and common protocols: HTTP, DNS, SMB, IP, TCP, UDP
- Working knowledge of web technologies: SSL, Web Services, Proxy configurations
- In-depth knowledge of vulnerabilities and exploitation, including detection and mitigation techniques
Benefits
- Vacation: 15 days
- Sick/Personal Days: 15 days
- Rice Allowance
- HMO Coverage
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Associate Manager in Accenture's Global Protection & Security Team for Central Europe. Advising on physical safety, crisis management, and threat analyses in a dynamic, international environment.
Cybersecurity Learning Specialist at Avaron developing digital learning solutions to promote secure behaviors across a global cybersecurity organization. Focusing on pedagogical methods for effective learning experiences.
Staff Software Engineer on Vulnerability Management team at Salesforce, driving security tooling strategy and automation for detecting and remediating vulnerabilities. Collaborate with cross - functional teams while providing mentorship and delivering high - quality engineering solutions.
Data Center Security Officer responsible for conducting patrols and controlling access. Ensuring security and safety in data center facilities while monitoring surveillance and reporting issues.
Senior Security Auditor managing audit program operations for global security audits at NTT DATA. Focusing on coordinating, executing audits, producing reports and tracking remediation.
Security Architect in Transactions domain ensuring cybersecurity for Payments and Financial markets. Collaborating with teams to enhance compliance and security practices.
Modern Infrastructure and Security Architect at MUFG responsible for directing cyber security initiatives. Collaborating with engineers to enhance security features and tools across the organization.
Senior Federal Technical Program Manager driving execution of federal cloud operations. Facilitating engagements between HPE's CSP and MSP teams while ensuring compliance and operational efficiency.
Cloud Cybersecurity Engineer supporting multi - cloud environments for critical missions in alignment with the U.S. Air Force. Roles include overseeing security authorizations and collaborating with government teams.