Cyber Security Incident and Event Management/Elastic Specialist Job at Diligent Consulting Inc, Washington DC

U2JKYkU5SWxkSk5BNHBNbFBOeFJibUFSNFE9PQ==
  • Diligent Consulting Inc
  • Washington DC

Job Description

US CITIZEN ONLY. SECRET CLEARANCE REQUIRED.  MUST HAVE IT-II CERT (IE SECURITY+)

SIEM/Elastic Specialist will:

• Be responsible for designing & setting up the ingestion of various customer data flows to include pre-processing data into a useable format, ensuring proper parsing and indexing
• Collaborate with cross-functional teams and responsible for designing & integrating Elastic with a wide variety of data sources and developing associated knowledge objects such as queries, dashboards, reports, alerts for monitoring and analytics
• Perform data transformation using Elastic query language 
• Track the health of the Elastic environment and optimize its performance. Troubleshoot and resolve issues related to security, performance, data indexing, and searches
• Perform watch-officer monitoring duties, including:
○ monitoring, detecting, investigating, and responding to cybersecurity threats and events using Elastic /SIEM Platform
○ Reviewing correlated alerts and logs for compromise scenarios
○ Performing triage of security alerts to prioritize response
○ Identifying false positives
○ Investigating security incidents and determining root cause
○ Collecting and preserving logs for analysis
○ Escalating confirmed incidents to leadership or SOC teams
○ Coordinating with IT or DevOps for containment and remediation
○ Creating after-action reports (AAR) post-incident
• In addition, the role may include assistance with monitoring Vulnerability Management tools, such as ACAS and ePO.

QUALIFICATIONS:

• Have at least three years of working knowledge and hands-on experience with Elastic/Splunk query languages, monitoring SIEM dashboards and real-time alerts, fine-tuning SIEM rules to reduce noise, and NIST 800-53 & DevSecOps frameworks

 

Job Tags

Full time,

Similar Jobs

PwC

Financial Services International Tax Compliance - Manager Save for Later Remove job Job at PwC

 ...optimise their tax positions.Those in international tax at PwC will provide advice and guidance...  ...need to lead and deliver value at this level include but are not limited to:...  ...does not intend to hire experienced or entry level job seekers who will need, now or... 

Gpac

Construction Project Engineer (Minneapolis, MN) Job at Gpac

Commercial Construction Project Engineer - (Minneapolis, MN) NOW HIRING ! Long time commercial general contractor in Minneapolis, MN is...  ...Minnesota / Commercial Construction / Project Engineer / Great Company / Growth Opportunities / Starting Calls / Now Hiring All... 

Ottenweller Company Inc.

Fixture Design Engineer Job at Ottenweller Company Inc.

 ...Summary : Designs fixtures for fabrication of metal products to produce quality part...  ...and cost-reduction. Reviews and updates engineering changes. Performs other duties as assigned...  ...abstract and concrete variables. Physical Demands: While performing the duties of... 

Nielsen Dodge Chrysler Jeep Ram

Body Shop Technician Job at Nielsen Dodge Chrysler Jeep Ram

 ...Nielsen Dodge is looking for a Body shop Tech to join the team! This position is responsible for performing vehicle repair as assigned in accordance with dealer and factory standards. What We Offer: ~ FREE COLLEGE OPPORTUNITY! Online or in-person with Strayer University... 

Great Basin Industrial

Apprentice Electrician Job at Great Basin Industrial

 ...Commercial electrical contractor in Austin, Texas, is seeking dedicated and skilled TDLR licensed apprentice electricians to join our team. We specialize in commercial construction and are looking for team members with a minimum of 2 full years of commercial experience...