Sr Cyber Systems Administrator - Pikesville, United States - System One Holdings, LLC

Description

• Configuration management and control of maintenance architectural/design/functional changes to Splunk Enterprise, ES and SOAR.
• Provide knowledge and execution of platform hardening using standards such as STIGs or CIS Benchmarks.
• Coordinate with various system owner support groups to gather and analyze requirements, propose implementation and integrations solutions, and plan and coordinate/execute system deployment tasks/projects to successful closure.
• Gap assessment and analysis of security solutions and recommendation of improvement initiatives.
• Architecture and design with future growth in mind to ensure a balance between scalability, performance, stability, reliability, and agility.
• Implementation, administration, maintenance, troubleshooting, root cause analysis, and break-fix support of security tools.
• Defense in-depth gap analysis and improvement recommendations of the security architecture and posture of the SOC infrastructure and environment.
• Development and implementation of secure configurations standards of SOC tools.
• Configuration management and control of maintenance architectural/design/functional changes to Splunk ES and Phantom.
• Monitoring system updates and planning, reviewing, and executing patch/upgrade deployments.
• Analyze system operational requirements and define, design, develop, and maintain/improve health and performance monitoring dashboards, alerts, and reports etc.
• Operations monitoring of SOC tool to ensure proactive issue identification and resolution.
• Analyze business requirements, research and recommend what tools should be used to complete the Cybersecurity vision (i.e. PAM, Forensic, DevSecOps, Defense-in-Depth, Zero-Trust).
• Plan, define, and implement an effective and efficient data backup strategy.
• Plan, define, and implement an effective and efficient data archiving strategy.
• Defining, developing, implementing, and improving processes and procedures for to support and maintain SOC tools.
• Experience engineering and administration of enterprise EDR systems.

• At least ten (10) years of hands-on experience in LAN/Network Administration.
• At least five (5) years of Technical Lead experience on system management /deployment projects with a focus on Linux based OS.
• At least five (5) years of progressive experience in enterprise and security architecture, design, implementation, and support.
• Bachelor's degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.
• Industry recognized security certification, IAT Level II/III (preferred).

• Self-starter, able to gather requirements, plan, execute system deployment efforts.
• Able to perform gap analysis and initiate and execute architectural and design improvements.
• System architecture, engineering, or administration experience.
• Customer-oriented with excellent issue follow-through and resolution abilities.
• Excellent written and oral communication, and presentation skills.
• Ability to effectively work both autonomously as well as on a team.
• Outstanding interpersonal skills, strong work ethic, and self-motivated.
• Utilize tools and analytical skills to plan and execute technical changes.

• Experience with the following tools: Splunk/ES/Phantom, Palo Alto Panorama, Tanium, Thycotic Secret Server, Shodan, RiskSense, Security IQ, ServiceNow, Tenable SC/ TenableIO, Plixer Scrutinizer.
• Experience architecting and multi-tier system/applications i.e Splunk ES and Phantom.
• Experience analyzing and implement security architecture best practices.
• Experience with Windows, Linux, Database, and Web Apps system administration.
• Scripting in Pearl/Python/Bash/PowerShell etc.
• Experience in project task technical analysis, planning, and estimation.
• Experience with technology capabilities market research, technical analysis/review, and recommendation.