Upvote
Downvote
Cyber Security Operations Specialist - SIEM Services
Share Job
- Suggest Revision
Full-time
- Retain documentation regarding loss of event logs (e.g. June 5-7th DNS logs were not ingested from SBU and are lost) Configure all assets assigned to this service within the Government Furnished Information - Software Tools list in accordance with all Federal, DoD, IC, and NGA laws, directives, orders, polices, guidance, procedures etc.
- Perform all development, design, engineering, testing, integration, and implementation actions needed for the total integration and interoperability between all applicable assets in the Government Furnished Information - Software Tools list.
- This includes ensuing all data flows are properly parsed for ingestion/transmission to internal and external automated reporting systems (e.g. JFHQ DoDIN - Joint Incident Management System, DoD CIO - DoD Scorecard/Get to Green reporting, IC CIO - Cybersecurity Performance Evaluation Model reporting, etc.)
- Desired Skills: Kibana Data AnalyticsInvestigates, analyzes, and responds to cyber incidents within a network environment or enclave.
- Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.
Active Job
Updated 1 month agoSimilar Job
Relevance
Active