Job Title: Systems Analyst Intermediate Location : El Dorado Hills, CA Pay Rates: DOE/hr W-2 Duration: 12 months with possible extension Responsibilities: • Security Incident Handling & Response: Handle any imminent threat of current violation of an organization’s security policies or standard security practices. These security incidents could include malware, ransomware, phishing, Advanced Persistent Threats, Distributed Denial of Service (DDoS) attacks, and more. • SIEM Management: Manage and analyze the security information and event management (SIEM) tools and services. • Analytics & Intelligence: Leverage analytics and intelligence gathering to identify and detect attacks as quickly as possible. Using analytics and intelligence allows the security practitioner to aggregate network and application data to prevent attacks from occurring in the future. • Firewall/IDS/IPS Skills: Leverage a firewall to filter network traffic and prevent unauthorized access onto the network. In addition, the security analysis must have a knowledge of Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) and know how they relate to the firewall. • Intrusion Detection: Identify any suspicious traffic on the network as well as any security policy violations. • Application Security Development: Improve the security of any application by finding, and reporting vulnerabilities. In addition, the analyst must ensure testing and validate during the software development lifecycle (SDLC) so that vulnerabilities are addressed before an application is deployed. • Malware detection: Leverage advanced threat protection software to detect and identify Advanced Persistent Threats (APTs) that might circumvent traditional security solutions like anti-virus, firewalls, and IPS/IDS. • Data Management Protection: Handle, analyze, and securely store all types of data. • Identity & Access Management: Monitor for abuse of access Must Have Skills:
A degree in Computer Science or Engineering or related field with a minimum of 1+ years dedicated to IT, IT security, and/or security infrastructure experience OR a combination of equivalent work experience and education.
1+ years dedicated IT security
Advanced event monitoring, analysis, response, and reporting for IT security incidents
Good written and verbal communication skills at different levels with the ability to articulate with both technical and non-technical audiences
Advanced with MS Office suite
Nice to Have Skills:
Certifications which demonstrate baseline competency in the areas of IT Security or related filed (CISSP, GIAC) is a plus
Knowledge of HIPAA, HITECH, PCI-DSS, ISO 2700X, the healthcare industry and proper application of the Security and Privacy Rules is a plus.