Cyber Security Incident and Event Management/Elastic Specialist Job at Diligent Consulting Inc, Washington DC

cFZURExaV2dEOHdwUmdlbWZ5dzZPU1ZWSFE9PQ==
  • Diligent Consulting Inc
  • Washington DC

Job Description

US CITIZEN ONLY. SECRET CLEARANCE REQUIRED.  MUST HAVE IT-II CERT (IE SECURITY+)

SIEM/Elastic Specialist will:

• Be responsible for designing & setting up the ingestion of various customer data flows to include pre-processing data into a useable format, ensuring proper parsing and indexing
• Collaborate with cross-functional teams and responsible for designing & integrating Elastic with a wide variety of data sources and developing associated knowledge objects such as queries, dashboards, reports, alerts for monitoring and analytics
• Perform data transformation using Elastic query language 
• Track the health of the Elastic environment and optimize its performance. Troubleshoot and resolve issues related to security, performance, data indexing, and searches
• Perform watch-officer monitoring duties, including:
○ monitoring, detecting, investigating, and responding to cybersecurity threats and events using Elastic /SIEM Platform
○ Reviewing correlated alerts and logs for compromise scenarios
○ Performing triage of security alerts to prioritize response
○ Identifying false positives
○ Investigating security incidents and determining root cause
○ Collecting and preserving logs for analysis
○ Escalating confirmed incidents to leadership or SOC teams
○ Coordinating with IT or DevOps for containment and remediation
○ Creating after-action reports (AAR) post-incident
• In addition, the role may include assistance with monitoring Vulnerability Management tools, such as ACAS and ePO.

QUALIFICATIONS:

• Have at least three years of working knowledge and hands-on experience with Elastic/Splunk query languages, monitoring SIEM dashboards and real-time alerts, fine-tuning SIEM rules to reduce noise, and NIST 800-53 & DevSecOps frameworks

 

Job Tags

Full time,

Similar Jobs

Nanning Zest Global HR Co.,Ltd.

Japenese/German/French/Spanish teacher needed in Beijing Foreign Language school Job at Nanning Zest Global HR Co.,Ltd.

Requirements:1; Japenese/ German/French /Spanish as native language, below 58 years old2; BA or above3; teaching certificates 4; have Japenese/Genman/French /Spanish/ English teaching experience preferred 5; physically and mentally healthy6; love kids, enjoy teaching... 

Westinghouse Electric - USA

Entry-Level Mechanical Design Engineer, Nuclear Plant Operations Job at Westinghouse Electric - USA

 ...Ready to launch your mechanical engineering career in nuclear energy? Join Westinghouse in Madison, PA (southeast of Pittsburgh near New Stanton...  .... Can you: Apply mechanical fundamentals to the design, construction, operation, and eventual decommissioning of nuclear... 

Takeda Pharmaceutical (US)

Medical Director, Clinical Science, GI2 TAU- Hematology/Rare Disease Job at Takeda Pharmaceutical (US)

 ...Director, Clinical Science, GI2 TAU- Hematology/Rare Disease in our Cambridge, MA office. At Takeda, we are transforming the pharmaceutical industry through our R&D-driven market leadership and being a values-led company. To do this, we empower our people to realize their... 

The Boeing Company

Senior Manufacturing Engineer - Avionics - 2nd Shift - Millennium Space Systems Job at The Boeing Company

 ...Overview At Boeing, we innovate and collaborate to make the world a better place. Were committed to fostering an environment for...  ...Find your future with us. Millennium Space Systems, A Boeing Company delivers affordable, high-performance space systems for exacting... 

New paradigm staffing

Remote Medical Records Clerk Job at New paradigm staffing

 ...for a detail-oriented and motivated Entry-Level Medical Records Clerk to join New Paradigm...  ...skilled professionals with remote health information opportunities. This role is perfect...  ...within health information management Apply today and take the first step...