Remote or Hybrid allowedQualificationsAt least five years of experience performing the functions associated with this labor categoryExperience administering and maintaining the logic for a variety of intrusion detection, prevention, and analysis platforms that are designed to identify and/or technically counter attempted intrusions as part of a defense-in-depth program that protects both local (on-premises) and cloud computing systems. This includes authoring and implementing custom detection content for signature-based detection systems, security information and event management (SIEM) systems, host-based detection systems, and firewall logic.Experience monitoring real-time network activity flagged by a variety of intrusion detection, prevention, and analysis platforms and experience analyzing the resulting raw data metadata, and event logs to confirm suspected intrusion attempts into either local (on-premises) or cloud computing systemsExperience investigating network anomalies and responding to cybersecurity incidents in either local (on-premises) or cloud computing systems, including all phases of the digital forensics and incident response process (e.g. preparation, scoping, containment, eradication, remediation, recovery, lessons learned, and closeout)Experience implementing and maintaining a fully operational data loss prevention capability that prevents the loss of data from local (on-premises) and/or cloud computing systems.Capabilities Administer and maintain logic for a variety of intrusion detection, prevention, and analysis platformsAuthor and implement custom detection content for signature based detection systems, security information and event management (SIEM) systems, host-based detection systems, and firewall logicMonitor real-time network activity flagged by a variety of intrusion detection, prevention, and analysis platforms and analyze raw data, metadata, and event logs to confirm suspected intrusion attempts into either local (on-premises) or cloud computing systemsInvestigate network anomalies and respond to cybersecurity incidents in either local (on-premises) or cloud computing systemsImplement and maintain a fully operational data loss prevention capability that prevents the loss of data from local (on-premises) and/or cloud computing systems CertificationsCertified Information Systems Security Professional (CISSP)Certified Incident Handler (GCIH)GIAC Network Forensic Analyst (GNFA)GIAC Certified Forensic Analyst (GCFA)Equivalent Notes/QuestionsRemote or Hybrid allowedVIVA is an equal opportunity employer. All qualified applicants have an equal opportunity for placement, and all employees have an equal opportunity to develop on the job. This means that VIVA will not discriminate against any employee or qualified applicant on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status
QualificationsAt least five years of experience performing the functions associated with this labor categoryExperience administering and maintaining the logic for a variety of intrusion detection, prevention, and analysis platforms that are designed to identify and/or technically counter attempted intrusions as part of a defense-in-depth program that protects both local (on-premises) and cloud computing systems. This includes authoring and implementing custom detection content for signature-based detection systems, security information and event management (SIEM) systems, host-based detection systems, and firewall logic.Experience monitoring real-time network activity flagged by a variety of intrusion detection, prevention, and analysis platforms and experience analyzing the resulting raw data metadata, and event logs to confirm suspected intrusion attempts into either local (on-premises) or cloud computing systemsExperience investigating network anomalies and responding to cybersecurity incidents in either local (on-premises) or cloud computing systems, including all phases of the digital forensics and incident response process (e.g. preparation, scoping, containment, eradication, remediation, recovery, lessons learned, and closeout)Experience implementing and maintaining a fully operational data loss prevention capability that prevents the loss of data from local (on-premises) and/or cloud computing systems.
Capabilities
Administer and maintain logic for a variety of intrusion detection, prevention, and analysis platformsAuthor and implement custom detection content for signature based detection systems, security information and event management (SIEM) systems, host-based detection systems, and firewall logicMonitor real-time network activity flagged by a variety of intrusion detection, prevention, and analysis platforms and analyze raw data, metadata, and event logs to confirm suspected intrusion attempts into either local (on-premises) or cloud computing systemsInvestigate network anomalies and respond to cybersecurity incidents in either local (on-premises) or cloud computing systemsImplement and maintain a fully operational data loss prevention capability that prevents the loss of data from local (on-premises) and/or cloud computing systems
Certifications
Certified Information Systems Security Professional (CISSP)Certified Incident Handler (GCIH)GIAC Network Forensic Analyst (GNFA)GIAC Certified Forensic Analyst (GCFA)Equivalent Notes/QuestionsRemote or Hybrid allowed
(Please ensure email matches your resume email)
(document types allowed: doc/docx/rtf/pdf/txt) (max 2MB)
By submitting this form, you are consenting to the VIVA team contacting you via Phone/Email