Local Defender - Southport, United States - Mount Indie

    Mount Indie
    Mount Indie Southport, United States

    2 weeks ago

    Default job background
    Description
    Job

    Description Job Description General Summary:

    Performs system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings.

    Position requires on-site support.

    Principal Duties and Responsibilities (*Essential Functions):Submits and tracks all service tickets submitted internally and externally for Operational Technology (OT) systems.

    Monitors/logs SOC Request/CNOC actions and response.
    Assists in OT investigations of significant incidents and reporting.
    Submits and tracks all service tickets submitted on behalf of customer internally and to external organizations.

    Provides timely acknowledgement of SOC service requests, problem identification, root cause analysis, escalation, resolution, and closure for all SOC service requests in accordance with SLAs and OLAs.

    Escalates OT cyber incidents that require further in-depth analysis.
    Categorizes and prioritizes OT cyber events and other SOC service requests.
    Documents and tracks incidents in accordance with the reporting procedure and archive historical OT SOC data.
    Provides situational awareness on OT cybersecurity-related issues impacting enterprise policies and procedures.
    Provides monitoring and analysis of OT SIEM events to identify potential security risks and vulnerabilities.
    Triages events and investigates to identify OT security incidents.
    Logs security incidents in the IT/OT ticketing system.
    Manages OT security incidents throughout their lifecycle to closure.
    Coordinates with other technical teams to investigate, document, and resolve issues.
    Makes recommendations for ongoing tuning and updates to the SIEM system.
    Receives input from threat intelligence sources and analyzes events to identify threats and risks.
    Supports ad-hoc data and investigation requests.
    Conducts security and vulnerability scans as directed using established processes.

    Required ExperienceAssociates Degree or Bachelors Degree in related field, or equivalent experience; minimum of 3 related certifications may be used in place of related academic fieldMinimum of 7-10 years of work related experienceCurrent DoD 8140 IAT Level II certificationOne of the following current certifications:Tenable.

    SC SpecialistTenable.
    OT SpecialistDragos Platform Certified User (DPCU)

    Dragos ICS-OT Cybersecurity TrainingAbility to obtain/maintain a secret security clearance; US citizenship requiredICS/OT Penetration Testing experienceAbility to clearly present and communicate technical approaches and findingsPreferred QualificationsAdvanced degree preferredStrong knowledge base preferred in the areas of:
    Real-time security situational awarenessOperational network systemsSecurity monitoringActive secret clearanceExperience with DoD#J-18808-Ljbffr