CL - Security Analyst - Entry Job at Buzzclan, Blythewood, SC

bFJqV3E3ZGtLWWc2MEZ0YmNNWVRleHJ4SXc9PQ==
  • Buzzclan
  • Blythewood, SC

Job Description

Job Description

Job Description


Job Description: SUPPLIER CALL
Friday, March 7th
2pm to 2:15pm est
+1 414-435-2883
Passcode: 385567840

Max Bill Rate: -

This role is 100% ONSITE - 0% remote

**Only those selected for an interview will need to sign and return the NDA to TAPFIN - email to ************* OF THE PROJECT:
Enhance the security posture of the South Carolina Department of Motor Vehicles (SCDMV) to protect sensitive citizen data and ensure the integrity of motor vehicle licensing and titling systems.

DAILY DUTIES / RESPONSIBILITIES:
THE DMV SECURITY TEAM IS LOOKING FOR CANDIDATES TO FILL TWO ENTRY LEVEL SECURITY POSITIONS. THE DMV WILL TRAIN THE SELECTED CANDIDATES TO PERFORM THE TASKS LISTED BELOW. AT A MINIMUM WE ARE LOOKING FOR BASIC SERVER OR NETWORK ADMINISTRATION SKILLS THAT WE CAN BUILD UPON.

1. Threat Intelligence Research
Monitor and analyze threat intelligence feeds to identify emerging threats relevant to the organization.
Document findings, such as new attack methods or vulnerabilities, and share with the team.
Use open-source intelligence (OSINT) tools to gather data on potential risks and adversaries.
2. Threat Hunting and Detection Rule Creation
Conduct proactive searches for suspicious behavior in network and endpoint activity using provided tools and playbooks.
Collaborate with senior analysts to refine and test detection rules (e.g., SIEM queries or Defender for Endpoint rules).
Document hunting methodologies and findings to support continuous improvement.
3. Log Analysis
Review and interpret logs from firewalls, endpoints, and servers to identify indicators of compromise (IOCs).
Escalate findings, such as anomalous IP addresses or unauthorized access attempts, to senior analysts.
Maintain a log of recurring patterns or anomalies for long-term tracking and analysis.
4. Incident Response
Assist in initial triage of security incidents by following response frameworks (e.g., NIST, MITRE ATT&CK).
Gather and analyze relevant evidence, such as logs or alert data, to determine the scope and severity of incidents.
Document findings during incidents and contribute to containment and remediation efforts.
5. Documentation and Reporting
Create clear, detailed reports, including incident reports, after-action reviews, and process documentation.
Draft training materials or guides to help improve organizational awareness and readiness.
Regularly update and organize documentation to ensure accuracy and accessibility for team use.

REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
PROBLEM-SOLVING: ANALYZE DATA, IDENTIFY ANOMALIES, AND RECOMMEND SOLUTIONS.
ATTENTION TO DETAIL: ENSURE ACCURATE ANALYSIS AND CONFIGURATION FOR EFFECTIVE SECURITY MEASURES.

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
VULNERABILITY MANAGEMENT: ANALYZE REPORTS, PRIORITIZE PATCHING, UNDERSTAND NIST BEST PRACTICES.
THREAT HUNTING & INTELLIGENCE: UTILIZE THREAT FEEDS, INVESTIGATE SUSPICIOUS ACTIVITY, STAY CURRENT ON CYBER THREATS.
SECURITY AWARENESS TRAINING: DEVELOP & DELIVER TRAINING, ASSESS EMPLOYEE AWARENESS THROUGH SIMULATIONS.
SECURITY AUTOMATION: LEVERAGE SCCM, GPO, POWERSHELL FOR PATCH DEPLOYMENT.
ENDPOINT SECURITY (DEFENDER FOR ENDPOINT): CONFIGURE POLICIES, ANALYZE ALERTS, MANAGE ENDPOINT PROTECTION.
INCIDENT RESPONSE: IDENTIFY AND ESCALATE POTENTIAL SECURITY THREATS.
COMMUNICATION: DELIVER REPORTS ON SECURITY POSTURE AND PROPOSE MITIGATION STRATEGIES.
SCRIPTING: AUTOMATE TASKS BEYOND SCCM, GPO, AND POWERSHELL FOR INCREASED EFFICIENCY.
DIGITAL FORENSICS: INVESTIGATE SECURITY INCIDENTS AND COLLECT EVIDENCE FOR DEEPER ANALYSIS.
NETWORK SECURITY: UNDERSTAND NETWORK PROTOCOLS AND FIREWALLS TO STRENGTHEN OVERALL SECURITY POSTURE.
CLOUD SECURITY: AS CLOUD ADOPTION GROWS, UNDERSTANDING CLOUD-SPECIFIC SECURITY SOLUTIONS BECOMES VALUABLE.

REQUIRED EDUCATION AND EXPERIENCE: A high school diploma is required, a bachelor's degree in information technology systems, computer science, cybersecurity, or a related field is preferred. At least 1 year server or network administration experience is required. 1+ years of experience in a security focused role is preferred. Relevant experience may be substituted for the degree on a year-for-year basis.

CERTIFICATIONS: Not required, however we prioritize applicants who have:
GIAC Security Essentials (GSEC)
Security+ (CompTIA)
Network+ (CompTIA)
GIAC Incident Handler (GCIH)
Additional Sills: Skills:

Category

Name

Required

Importance

Level

Last Used

Experience

Network Security Cybersecurity No 1 Entry Currently Using < 1 Year Network Security Security Information Event Management (SIEM) systems development / configuration No 5 Entry Currently Using < 1 Year Networking & Directories Information Security No 2 Entry Currently Using < 1 Year Operating Systems/APIs PowerShell No 7 Entry Currently Using < 1 Year Programming Languages Python No 8 Entry Currently Using < 1 Year Protocols Intrusion Detection Systems (IDS) No 4 Entry Currently Using < 1 Year Protocols IPS No 3 Entry Currently Using < 1 Year Specialties Azure Cloud and Virtualization No 6 Entry Currently Using < 1 Year

Job Tags

Remote job,

Similar Jobs

Capital One

Senior Lead Software Engineer, Back End (Enterprise Platforms Technology) Job at Capital One

 ...America, McLean, Virginia Senior Lead Software Engineer, Back End (Enterprise...  ...diverse technology projects and a team of developers with deep experience in distributed microservices, and...  ...software engineering experience (Internship experience does not apply) At least... 

Cummins Aerospace

AEROSPACE MANUFACTURING ENGINEER Job at Cummins Aerospace

 ...Job Description Job Description Are you passionate about precision engineering and aerospace technology? We're seeking a skilled Manufacturing Planner/Engineer specializing in high-strength steel landing gear and components with associated processing to join our dynamic... 

Access Healthcare

Travel Nurse RN - Home Health - $2,482 per week Job at Access Healthcare

 ...Access Healthcare is seeking a travel nurse RN Home Health for a travel nursing job in Minot, North Dakota. Job Description & Requirements ~ Specialty: Home Health ~ Discipline: RN ~ Start Date: 03/17/2025~ Duration: 13 weeks ~40 hours per week ~ Shift... 

Jobot

Senior Tax Compliance Specialist (Hiring Immediately) Job at Jobot

 ...1. Overseeing all aspects of tax management, including tax compliance, reporting, and planning. 2. Developing and implementing strategic...  ...years of experience in tax management, preferably within the mortgage industry. 3. Comprehensive knowledge of tax laws and... 

Apex Systems

Scrum Master Job at Apex Systems

 ...Apex Systems is hiring a Senior Scrum Master to join a growing team in Draper, UT. Onsite Requirements: 2 days per week onsite in...  ...multiple cross-functional delivery teams in developing a Lean/Agile mindset, adopting, and continuously improving practices in their...