Manager of Security Operations in New York, NY at Open Systems Technologies

Date Posted: 1/6/2020

Job Snapshot

Job Description

A law firm is seeking a Manager of Security Operations to join their team in New York, NY.

Responsibilities

  • Perform real-time security log and event analysis and take action to contain and mitigate information security threats; The events will originate from SIEM, DLP, IDS/IPS, antivirus, firewalls and system security logs
  • Create, analyze and develop remediation plans resulting from the identification of vulnerabilities discovered during scheduled scans
  • Collect and analyze threat intelligence from internal and external sources to provide situational awareness and early detection of emerging attack vectors
  • Maintain existing security systems such as IPS/IDS, anti-virus, EPO, SIEM and other cyber-attack detection and analytics tools
  • Perform forensics, when needed utilizing tools such as Encase
  • Work across teams to accomplish security program goals
  • Implement new security technologies and solutions
  • Provide guidance to team members in handling security issues and incidents
  • Collaborate with the IT department in troubleshooting various security related issues and providing guidance in handling security requests
  • Recommend new security technologies to continuously mature the security program

Requirements

  • A Bachelor’s degree in related field or discipline
  • 8+ years of experience in information technology and security
  • Strong technical and infrastructure background
  • Strong log analysis and SIEM experience
  • Strong Incident Response experience: TIER 2/3 CSIRT Analyst
  • Detail-oriented and able to meet tight deadlines
  • Strong written, verbal and interpersonal skills
  • Strong knowledge of information security domains, concepts and principals
  • Knowledge of server and desktop operating systems
  • Knowledge of routers, switches, firewalls, and other network equipment
  • Experience with frameworks such as COSO COBIT, ISO 27002 and NIST
  • Able to scope, conduct and analyze audits based on controls frameworks
  • Experience with any of the following:
    • Vulnerability Scanning tools
    • Network Scanning/Management tools, Event Log management systems
    • Anti-virus, Anti-spam and other protective tools
    • Encryption products and Open source security related tools
    • Forensic Tools
    • Malware Analysis
    • Analysis of network captures
    • Advanced Persistent Threat analysis and mitigation
  • SPLUNK Administrator or Power User a plus
  • Penetration Testing experience a plus
  • CISSP, CISA, GIAC and other Industry Certifications are a plus
Job keywords: