IT SENIOR PROFESSIONAL - SECURITY ENGINEER

Job Description Are you passionate about protecting organizations from cyber threats and helping shape the future of cybersecurity? Virtuo Group is seeking a skilled and motivated Cybersecurity Analyst to join our award-winning team. In this role, you'll monitor, detect, and respond to security incidents, while working alongside experts who are dedicated to keeping our clients' systems secure. If you thrive in a fast-paced, dynamic environment and enjoy solving complex challenges, this is the opportunity to make a real impact.Workdays & Hours: MONDAY – FRIDAY 8:00 AM – 5:00 PM* *Subject to Change / Remote is Not an OptionDESCRIPTION OF DUTIES / ESSENTIAL FUNCTIONSDuties, functions and responsibilities of this position include:Responsible for communicating cyber risks and recommendations to mitigate risks to the Chief Information Security Officer (CISO)Facilitates department-specific system feeds into SOCs SIEM/SOAR platformsManage/coordinate endpoint protection tools, IPS firewall rules, and integrate threat detection across environmentsConducts basic malware analysis of attacker tools and identifies indicators of compromise (IOC)sManage the Security Operations Center (SOC) mailbox, and monitor and analyze the emails for threats including phishing and malware, and escalates per proceduresParticipates in the investigations of information security incidents and may prepare reports on intrusions as requiredProactively seek out suspicious activity and threats within the environment, act appropriately to contain and mitigate themPerform real-time detection, analysis, and response to threats via an EDR toolAnalyze the latest malware discoveries/shifts to understand how/if it would be effective in the environmentCreate new alerts and investigation methods in relation to the ever-changing threat landscapeAnalyze attacks and trends facing HPD to better define proactive defensive measuresTrack, provide, and present analysis into observed attacks against HPDAssist with the development, deployment and support of data protection solutionsAssist with the implementation of data security controls and design principlesAssist with technology and software reviews based on data protection and endpoint risksResponsible for implementing and supporting security platforms related to: Security Orchestration Automation & Response (SOAR), Security Information Event Management (SIEM)Manage SIEM platforms, agents, and apps\add-on log source integration upgradesDevelop alerts, reports, data models, dashboards, and connectors in support of HPD cyber operationsRecognize patterns and inconsistencies that could indicate complex cyber-attacksDevelop SIEM correlation rules to detect new threats beyond current capabilitiesAssist with designing and documenting work processesPerform log file analysis as neededContribute to CTI (Cyber Threat Intelligence) data gathering, reporting, and analysis activitiesLeverage automation and orchestration solutions to automate repetitive tasksContinuous optimization, tuning and monitoring of platformsIntegration of platforms into SIEM, SOAR and/or API'sIdentify credible, new intelligence, and subject matter resources relative to current and emerging threatsCreate written and verbal intelligence products for internal stakeholders to assist in proactively addressing cyber threats and mitigating riskRecognize, research, and analyze various threat actor groups/attack patterns and TTPsPrepare and brief CISO on the cyber threat landscape as requiredWORKING CONDITIONSThere are no major sources of discomfort, i.e., essentially normal office environment with acceptable lighting, temperature and air conditions. Significant time spent using computer display, keyboard, and mouse.EDUCATION REQUIREMENTSBachelor's degree in Cybersecurity, Computer Science, Information Systems, Network Engineering, or a related field is preferred. An associate degree combined with substantial hands-on experience and/or relevant certifications may be considered in lieu of a bachelor's degree, particularly in smaller municipal environments. A master's degree in Cybersecurity, Engineering, or Systems Architecture is also considered.EXPERIENCE REQUIREMENTS3–7 years of hands-on experience in security engineering, network engineering, or systems administration, with a strong focus on security.1–3 years of experience implementing, tuning, and integrating security technologies, including SIEM, SOAR, EDR, firewalls, and related tools.LICENSE REQUIREMENTSMust be able to pass a criminal background check, obtain and maintain federally mandated security clearances where required.PREFERENCESThe candidate must have the following knowledge, skills and abilities:Knowledgeable of Cyber Kill Chain and Diamond Model of Intrusion AnalysisFamiliarity with CJIS, NIST 800-53, and NIST CSFKnowledge of SIEM, IDS, anti-virus/anti-malware and firewall technologiesUnderstanding of networking and TCP/IPExperience with a wide variety of operating systems: Windows Server, Windows 10, Linux etc.Ability to troubleshoot technical and security related issuesExperience working in a rapidly changing, high intensity environmentAvid, proactive learner and ability to work well in a team-based environmentStrong interpersonal and writing skillsCandidate required to obtain Security+ certification during first year of employmentPreference shall be given to eligible veteran applicants provided such persons possess the qualifications necessary for competent discharge of the duties involved in the position applied for, such persons are among the most qualified candidates for the position.SELECTION / SKILLS TESTS REQUIREDOrganization may administer skills assessment test.EEO Equal Employment OpportunityVirtuo Group Corporation is committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, genetic information, veteran status, gender identity, or pregnancy.Company DescriptionVirtuo Group is an award-winning cybersecurity firm trusted by over 50 organizations nationwide. We tackle crises and streamline daily workflows with agility, expertise, and dedication. As a service-disabled, minority, woman-, and veteran-owned small business, we value the discipline and commitment veterans bring and actively recruit disabled veterans for key roles. Our core values—agility, technical acumen, and exceptional service—guide every solution, project, and client interaction. Join us and make an impact where it matters most.Company DescriptionVirtuo Group is an award-winning cybersecurity firm trusted by over 50 organizations nationwide. We tackle crises and streamline daily workflows with agility, expertise, and dedication. As a service-disabled, minority, woman-, and veteran-owned small business, we value the discipline and commitment veterans bring and actively recruit disabled veterans for key roles. Our core values—agility, technical acumen, and exceptional service—guide every solution, project, and client interaction. Join us and make an impact where it matters most.