Job Description
Job Description: Seeking security operations incident responders to manage confidentiality, integrity, and availability of internal and customer-facing networks and protection of vital information from cyber adversaries. This position involves direct customer support for managed security services as well as security incident handling on a 24x7x365 basis. Position includes cyber analysis growth and improvement opportunities, considerable case management writing opportunities, limited reports development, and extensive communication and coordination across several critical programs. The candidate function requires thorough understanding, visibility, and management of customer accounts by providing service-oriented information and first call resolution to enhance customer experience and prevent escalation when not required. Multiple program differentiation and operating in a faced-paced environment requires precise management of customer interaction and experience on a range of functional issue areas to include account and policy information, reports, outages, and security systems maintenance to maintain program compliance is required. The candidate must maintain visibility of all active security-related customer issues and follow up with escalation centers on each issue through resolution. Escalation coordination includes customer account management issues, maintenance scheduling, communications, outage management, trouble ticket follow up, facility security access requests, and customer onboarding. Must be flexible with shift schedule and be able to work rotational 8-hour shifts or longer based on the mission. Required Skills, Experience, and Education: The ideal candidate must be a self-starter, customer-focused, team player, flexible shift worker, strong oral and written communicator, and subject matter expert who can coordinate and collaborate on multiple operational issues simultaneously with many stakeholders. Excellent communications skills that include the ability to chronologically enter critical details inside tickets and cases so that other stakeholders may easily follow actions taken When escalation is needed, the candidate must be able to coordinate with program management and other operations centers to create a seamless customer experience and handoff through efficient call and ticket routing. Candidate must be capable of working with other operations and analysis team members closely to maintain maximum awareness of customer account information and standard issue requests on a per-customer basis. Candidate must have experience with ticket or case management platforms and other coordination systems such as ManageEngine or Remedy. Foremost, the candidate must possess exceptional customer experience skills, be committed to understanding the customer needs, and then taking appropriate steps to meeting those needs. Candidates should possess a bachelors degree, as a minimum, in a related field such as math, science, computing, or engineering. Required Clearance: Must have and be able to maintain a TS/SCI clearance with a CI polygraph Desired: Desired candidates should be methodical and prolific writers with acute attention to detail. Candidates should have a minimum of 3-5 years security incident handling expertise within a security operations center expertise. Understanding of government Tier 1 security operations center roles and responsibilities and computer network defense playbooks or incident response plans related to security operations are desired. Candidate should have relevant networking experience (e.g. TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to coordinate with other security teams in areas such as security event identification, known threat validation and analysis, and network vulnerability analysis and reporting. Security+, GCIA, CEH, CIH, or CISSP certification is desired. Security operations experience with HP Arcsight in the role of incident responder is desired.The ideal candidate must be a self-starter, customer-focused, team player, flexible shift worker, and be able to coordinate and collaborate on multiple issues simultaneously with many stakeholders. As the face of AT&T for multiple programs, the candidate function requires thorough understanding, visibility, and management of customer accounts. The incident responder must provide first call resolution by solving top level customer issues to enhance customer experience and prevent escalation when not required. Multiple program differentiation and operating in a 24x7x365 faced-paced environment requires precise management of customer interaction and experience on a range of functional issue areas to include account and policy information, reports, outages, and security systems maintenance to maintain program compliance is required. When escalation is needed, the candidate must be able to coordinate with program management and other operations centers to create a seamless customer experience and handoff through efficient call and ticket routing. The candidate must maintain visibility of all active security-related customer issues and follow up with escalation centers on each issue through resolution. Escalation coordination includes customer account management issues, maintenance scheduling, communications, outage management, trouble ticket follow up, facility security access requests, and customer onboarding. Candidate must be capable of working with other operations and analysis team members closely to maintain maximum awareness of customer account information and standard issue requests on a per-customer basis. Candidate must have experience with ticket or case management platforms and other coordination systems. Foremost, candidate must possess exceptional customer experience skills, be committed to understanding the customer needs, and then taking appropriate steps to meeting those needs. Candidate must have relevant networking experience (e.g. TCP/IP stack, DNS, BGP, metadata, IDS/IPS) and be able to coordinate with other security teams in areas such as security event identification, known threat validation and analysis, and network vulnerability analysis and reporting. Excellent communications skills, that include the ability to follow incident processes and procedures, provide formal documentation of analysis and editing at a technical/professional level, are required. Candidates should possess a bachelors degree, as a minimum, in a related field such as math, science, computing, or engineering. A minimum of 5 years of relevant cybersecurity experience is required. Must be flexible with work hours and able to work eight-hour shifts. Required Clearance: Must have and be able to maintain a TS/SCI clearance with a CI polygraph Desired: Incident handling with 5-7 years security operations center expertise supporting customer-facing elements and internal security information management systems. Prior experience with open source vulnerability tools such as nmap, autoscan, nessus, Wireshark, snort, etc is desired. Security+, GCIA, CEH, CIH, or CISSP certification is desired. Understanding of government Tier 1 security operations center roles and responsibilities and computer network defense playbooks or incident response plans related to security operations are desired. Relevant cybersecurity experience with Department of Homeland Security, Department of Defense, or Federal Bureau of Investigation desired.Job Requirements
Country: USA, State: Virginia, City: Herndon, Company: AT&T IT/Engineering/Technology.
Комментариев нет:
Отправить комментарий