Previous Job
Previous
Security Analyst
Ref No.: 16-00311
Location: Columbia, South Carolina
Client: Department of Administration
Location: Columbia,SC
Duration: 2 Months
Comments: Consultants who applied for Posting 6406-1 should NOT apply for this position. End date should be 6/30/2016 with the possibility of extensions. CB


Job Description:
Job Description: SCOPE OF THE PROJECT: SOC SECURITY AND LINUX SUPPORT ENGINEER
Support the Division of Information Security (Client) Security Operations Center (SOC) daily operations with installation, configuration, administration, monitoring and troubleshooting security sensors, log sources, and supporting systems.

DAILY DUTIES / RESPONSIBILITIES:
MANAGE AND ADMINISTER A LARGE NUMBER OF LINUX SERVERS AND OPEN-SOURCE SOFTWARE PACKAGES.
MANAGE OPEN-SOURCE PATCH MANAGEMENT AND STATUS MONITORING SYSTEMS.

INSTALL AND CONFIGURE SECURITY SENSORS COMPRISED OF OPEN-SOURCE CENTOS LINUX PLATFORMS AS WELL AS IBM/QRADAR FLOW COLLECTOR AND EVENT COLLECTOR APPLIANCES.

WORK WITH STATE ENTITIES TO INTEGRATE NEW LOG SOURCES INTO SOC MONITORING AS WELL AS MAINATIN AND MONITOR EXISTING LOG SOURCES.

REQUIRED EDUCATION/CERTIFICATIONS:
Bachelor's degree, or 4 years of experience in Linux system administration.

Skills
Skills:
Category
Name
Required
Importance
Level
Last Used
Experience
Network Security information security principles and practices Yes 2 Advanced Within 6 Months 2 - 4 Years
Network Security IT Security Yes 2 Advanced Within 6 Months 2 - 4 Years
Network Security Security Information Event Management (SIEM) systems development / configuration Yes 2 Advanced Within 6 Months 2 - 4 Years
Networking & Directories Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures. Yes 1 Expert Currently Using 4 - 6 Years
Networking & Directories Information Security Yes 2 Advanced Within 6 Months 2 - 4 Years
Operating Systems/APIs Linux Yes 1 Expert Currently Using 4 - 6 Years
Programming Languages BASH SCRIPTING Yes 1 Advanced Within 6 Months 2 - 4 Years
Programming Languages Perl Yes 1 Advanced Within 6 Months 2 - 4 Years
Programming Languages Python Yes 1 Advanced Within 6 Months 2 - 4 Years
Programming Languages Relevant programming languages and scripting tools. Yes 1 Advanced Within 6 Months 2 - 4 Years
Protocols Knowledge of networking protocols, including TCP/IP, HTTP, NTP, DNS, MLLP, NDM Yes 1 Advanced Currently Using 4 - 6 Years
Protocols TCP/IP Yes 1 Advanced Currently Using 4 - 6 Years
Specialties Experience in developing and maintaining documentation for policies, procedures, and best practices Yes 2 Advanced Within 1 Year 2 - 4 Years
Additional Skills: REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE):
Expert level ability to administer Linux and open-source systems
Skilled in scripting languages such as Bash, Perl or Python
Understanding of computer and network operating system fundamentals on diverse platforms (e.g. Unix, Linux, Windows, Mac/OS, Cisco, Juniper, etc.)
Knowledge of network protocols and ability to perform TCP/IP packet analysis

Excellent written and oral communication skills

PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE):
Cyber awareness and understanding.
Knowledge of information security topics related to computers, networks, and software
Experience with Security Information Event Management (SIEM) and Intrusion Detection Systems (IDS) configuration, tuning, and operation.
Understanding of information security event correlation.
Experience with authoring of policies, standards, or procedures.