-
BVLIT Senior Manager
1 week ago
REDW Oklahoma City, United StatesREDW LLC, one of the Southwest's largest and fastest growing certified public accounting and business advisory firms, with offices in New Mexico, Arizona, Oregon, and Oklahoma, is excited to have been awarded Top Workplace 2023, 2022 and 2021 honors for both the state of Arizona ...
-
Sr. Analyst, Falcon Complete
3 days ago
CrowdStrike Holdings, Inc. Oklahoma City, United StatesSr. Analyst, Falcon Complete page is loaded · Sr. Analyst, Falcon Complete · Apply · locations · USA - San Antonio, TX · time type · Full time · posted on · Posted 3 Days Ago · job requisition id · R18628 · #WeAreCrowdStrike and our mission is to stop breaches. As a gl ...
-
Senior analyst
2 days ago
HCL Technologies Oklahoma City, United StatesPrimary Skills: Should have expertise in administrating of SIEM tool such as SPLUNK Security Enterprise as L3 is must ,Should have worked as SOC Lead/Manager ,Expertise in SOAR tools like Cortex XSOAR, Splunk SOAR, IBM SOAR ,Technical certification on security technologies / prod ...
-
Sr. Analyst, Falcon Complete
1 day ago
CrowdStrike Holdings, Inc. Oklahoma City, United StatesSr. Analyst, Falcon Complete page is loaded · Sr. Analyst, Falcon Complete · Apply · locations · USA - San Antonio, TX · time type · Full time · posted on · Posted 3 Days Ago · job requisition id · R18628 · #WeAreCrowdStrike and our mission is to stop breaches. As a gl ...
-
Senior analyst
1 day ago
HCL Technologies Oklahoma City, United StatesPrimary Skills: Should have expertise in administrating of SIEM tool such as SPLUNK Security Enterprise as L3 is must ,Should have worked as SOC Lead/Manager ,Expertise in SOAR tools like Cortex XSOAR, Splunk SOAR, IBM SOAR ,Technical certification on security technologies / prod ...
-
Manager Threat Intelligence Investigations
3 weeks ago
Oracle Oklahoma City, United States Paid WorkJob Description · The OCI Threat Intelligence Center is responsible for the tracking and monitoring of a range of threat actors from cybercrime to Advanced Persistent Threat (APT) groups impacting OCI and its customers. The scope and responsibility of this team includes attack an ...
-
HIPAA SME/Technical Analyst II
2 days ago
Chickasaw Nation Industries Norman, United StatesIt's fun to work in a company where people truly BELIEVE in what they're doing · We're committed to bringing passion and customer focus to the business. · SUMMARY · The HIPAA Subject Matter Expert/Technical Analyst II supports the Health and Human Services (HHS), Office for Civil ...
Cyber Defense Forensics Analyst - Oklahoma City, United States - Rampant Technologies
Description
Job SummaryAnalyzes digital evidence and investigates computer security incidents to derive useful
information in support of system/network vulnerability mitigation.
Key Skills & Experience
5-7 years of directly relevant experience in network investigations.
In-depth knowledge of standard protocols – ICMP, HTTP/S, DNS, SSH, SMTP, SMB, NFS,
etc.
In-depth knowledge and experience of network topologies - DMZ's, WAN's, etc.
Substantial knowledge of Splunk (or other SIEM's).
Understanding of MITRE Adversary Tactics, Techniques and Common Knowledge
(ATT&CK).
Experience with Snort Rules, Yara Rules, PCAP Analysis, network topologies/network
architecture (TCP/IP), diagrams, TAPS, SPAN ports, mirroring, Berkley packet filters,
netflow, syslog, network communications protocols, Regex/Query/Scripting languages,
Pyton, JSON, VMWare, indicators of compromise (IOCs), RedHat/Linux use (CLI).
Experience with reconstructing a malicious attack or activity.
Ability to characterize and analyze network traffic, identify anomalous activity / potential
threats, analyze anomalies in network traffic using metadata.
Demonstrated use with:
Zeek/Bro, Gigamon or other packet brokers, Wireshark,
ELKStack, ArcSight, SourceFire NetWitness, Tanium, Palo Alto, TCPDump, Tshark,
Nagios, Suricata, Corelight, Various firewalls (F/W) and router set-up/admin, domain
tools (IRIS), AWS Cloud, MS Azure, Google Cloud.
Education, Certifications, & Credentials
BS Computer Science, Cybersecurity, Computer Engineering or related degree.
One or more of the following certifications: GCFA, GCFE, EnCE, CCE, CFCE, CEH, CCNA,
CCSP, CCIE, OSCP, GNFA.
Q clearance required
Candidates with TS/SCI can be transferred to Q clearance easily
*All duties and responsibilities are not captured in this job description. To find out more, please
reach out to the recruiter for this role
#J-18808-Ljbffr