Jobs
>
Oklahoma City

    Cyber Defense Forensics Analyst - Oklahoma City, United States - Rampant Technologies

    Rampant Technologies
    Rampant Technologies Oklahoma City, United States

    2 days ago

    Default job background
    Description
    Job Summary

    Analyzes digital evidence and investigates computer security incidents to derive useful
    information in support of system/network vulnerability mitigation.

    Key Skills & Experience

    5-7 years of directly relevant experience in network investigations.

    In-depth knowledge of standard protocols – ICMP, HTTP/S, DNS, SSH, SMTP, SMB, NFS,
    etc.

    In-depth knowledge and experience of network topologies - DMZ's, WAN's, etc.

    Substantial knowledge of Splunk (or other SIEM's).

    Understanding of MITRE Adversary Tactics, Techniques and Common Knowledge
    (ATT&CK).

    Experience with Snort Rules, Yara Rules, PCAP Analysis, network topologies/network
    architecture (TCP/IP), diagrams, TAPS, SPAN ports, mirroring, Berkley packet filters,
    netflow, syslog, network communications protocols, Regex/Query/Scripting languages,
    Pyton, JSON, VMWare, indicators of compromise (IOCs), RedHat/Linux use (CLI).

    Experience with reconstructing a malicious attack or activity.

    Ability to characterize and analyze network traffic, identify anomalous activity / potential
    threats, analyze anomalies in network traffic using metadata.

    Demonstrated use with:
    Zeek/Bro, Gigamon or other packet brokers, Wireshark,
    ELKStack, ArcSight, SourceFire NetWitness, Tanium, Palo Alto, TCPDump, Tshark,
    Nagios, Suricata, Corelight, Various firewalls (F/W) and router set-up/admin, domain
    tools (IRIS), AWS Cloud, MS Azure, Google Cloud.

    Education, Certifications, & Credentials

    BS Computer Science, Cybersecurity, Computer Engineering or related degree.

    One or more of the following certifications: GCFA, GCFE, EnCE, CCE, CFCE, CEH, CCNA,
    CCSP, CCIE, OSCP, GNFA.

    Q clearance required

    Candidates with TS/SCI can be transferred to Q clearance easily

    *All duties and responsibilities are not captured in this job description. To find out more, please
    reach out to the recruiter for this role

    #J-18808-Ljbffr
  • REDW

    BVLIT Senior Manager

    1 week ago

    REDW Oklahoma City, United States

    REDW LLC, one of the Southwest's largest and fastest growing certified public accounting and business advisory firms, with offices in New Mexico, Arizona, Oregon, and Oklahoma, is excited to have been awarded Top Workplace 2023, 2022 and 2021 honors for both the state of Arizona ...

  • CrowdStrike Holdings, Inc.

    Sr. Analyst, Falcon Complete

    3 days ago

    CrowdStrike Holdings, Inc. Oklahoma City, United States

    Sr. Analyst, Falcon Complete page is loaded · Sr. Analyst, Falcon Complete · Apply · locations · USA - San Antonio, TX · time type · Full time · posted on · Posted 3 Days Ago · job requisition id · R18628 · #WeAreCrowdStrike and our mission is to stop breaches. As a gl ...

  • HCL Technologies

    Senior analyst

    2 days ago

    HCL Technologies Oklahoma City, United States

    Primary Skills: Should have expertise in administrating of SIEM tool such as SPLUNK Security Enterprise as L3 is must ,Should have worked as SOC Lead/Manager ,Expertise in SOAR tools like Cortex XSOAR, Splunk SOAR, IBM SOAR ,Technical certification on security technologies / prod ...

  • CrowdStrike Holdings, Inc.

    Sr. Analyst, Falcon Complete

    1 day ago

    CrowdStrike Holdings, Inc. Oklahoma City, United States

    Sr. Analyst, Falcon Complete page is loaded · Sr. Analyst, Falcon Complete · Apply · locations · USA - San Antonio, TX · time type · Full time · posted on · Posted 3 Days Ago · job requisition id · R18628 · #WeAreCrowdStrike and our mission is to stop breaches. As a gl ...

  • HCL Technologies

    Senior analyst

    1 day ago

    HCL Technologies Oklahoma City, United States

    Primary Skills: Should have expertise in administrating of SIEM tool such as SPLUNK Security Enterprise as L3 is must ,Should have worked as SOC Lead/Manager ,Expertise in SOAR tools like Cortex XSOAR, Splunk SOAR, IBM SOAR ,Technical certification on security technologies / prod ...

  • Oracle

    Manager Threat Intelligence Investigations

    3 weeks ago

    Oracle Oklahoma City, United States Paid Work

    Job Description · The OCI Threat Intelligence Center is responsible for the tracking and monitoring of a range of threat actors from cybercrime to Advanced Persistent Threat (APT) groups impacting OCI and its customers. The scope and responsibility of this team includes attack an ...

  • Chickasaw Nation Industries

    HIPAA SME/Technical Analyst II

    2 days ago

    Chickasaw Nation Industries Norman, United States

    It's fun to work in a company where people truly BELIEVE in what they're doing · We're committed to bringing passion and customer focus to the business. · SUMMARY · The HIPAA Subject Matter Expert/Technical Analyst II supports the Health and Human Services (HHS), Office for Civil ...