No more applications are being accepted for this job
- Configuration management and control of maintenance architectural/design/functional changes to Splunk Enterprise, ES and SOAR.
- Provide knowledge and execution of platform hardening using standards such as STIGs or CIS Benchmarks.
- Coordinate with various system owner support groups to gather and analyze requirements, propose implementation and integrations solutions, and plan and coordinate/execute system deployment tasks/projects to successful closure.
- Gap assessment and analysis of security solutions and recommendation of improvement initiatives.
- Architecture and design with future growth in mind to ensure a balance between scalability, performance, stability, reliability, and agility.
- Implementation, administration, maintenance, troubleshooting, root cause analysis, and break-fix support of security tools.
- Defense in-depth gap analysis and improvement recommendations of the security architecture and posture of the SOC infrastructure and environment.
- Development and implementation of secure configurations standards of SOC tools.
- Configuration management and control of maintenance architectural/design/functional changes to Splunk ES and Phantom.
- Monitoring system updates and planning, reviewing, and executing patch/upgrade deployments.
- Analyze system operational requirements and define, design, develop, and maintain/improve health and performance monitoring dashboards, alerts, and reports etc.
- Operations monitoring of SOC tool to ensure proactive issue identification and resolution.
- Analyze business requirements, research and recommend what tools should be used to complete the Cybersecurity vision (i.e. PAM, Forensic, DevSecOps, Defense-in-Depth, Zero-Trust).
- Plan, define, and implement an effective and efficient data backup strategy.
- Plan, define, and implement an effective and efficient data archiving strategy.
- Defining, developing, implementing, and improving processes and procedures for to support and maintain SOC tools.
- Experience engineering and administration of enterprise EDR systems.
- At least ten (10) years of hands-on experience in LAN/Network Administration.
- At least five (5) years of Technical Lead experience on system management /deployment projects with a focus on Linux based OS.
- At least five (5) years of progressive experience in enterprise and security architecture, design, implementation, and support.
- Bachelor's degree from an accredited college or university with a major in Computer Science, Information Systems, Engineering or related scientific or technical discipline.
- Industry recognized security certification, IAT Level II/III (preferred).
- Self-starter, able to gather requirements, plan, execute system deployment efforts.
- Able to perform gap analysis and initiate and execute architectural and design improvements.
- System architecture, engineering, or administration experience.
- Customer-oriented with excellent issue follow-through and resolution abilities.
- Excellent written and oral communication, and presentation skills.
- Ability to effectively work both autonomously as well as on a team.
- Outstanding interpersonal skills, strong work ethic, and self-motivated.
- Utilize tools and analytical skills to plan and execute technical changes.
- Experience with the following tools: Splunk/ES/Phantom, Palo Alto Panorama, Tanium, Thycotic Secret Server, Shodan, RiskSense, Security IQ, ServiceNow, Tenable SC/ TenableIO, Plixer Scrutinizer.
- Experience architecting and multi-tier system/applications i.e Splunk ES and Phantom.
- Experience analyzing and implement security architecture best practices.
- Experience with Windows, Linux, Database, and Web Apps system administration.
- Scripting in Pearl/Python/Bash/PowerShell etc.
- Experience in project task technical analysis, planning, and estimation.
- Experience with technology capabilities market research, technical analysis/review, and recommendation.
Sr Cyber Systems Administrator - Pikesville, United States - System One Holdings, LLC
Description
Job Title: Senior Cyber Systems AdministratorMD-Crownsville-Hybrid
Must be US Citizen per client
Duties and Responsibilities:
Education and Years of Experience: