Description

*) Assist in the planning, design, deployment and operational support of enterprise security platforms, including:
*) Security Information and Event Management (SIEM)
*) Extended Detection and Response (XDR)
*) Vulnerability Management Platforms and Processes
*) Data Loss Prevention (DLP) Solutions
*) Security Awareness and Training Platforms
*) Support the Development and Maturation of the Enterprise Vulnerability Management Program, Including Scanning, Reporting, Remediation Tracking and Metrics.
*) Build, Deploy, Configure, and maintain Linux-based security sensors and related endpoint monitoring tools.
*) Assist in the integration and automation of disparate security and enterprise it tools using scripting and orchestration technologies.
*) Collaborate with security architects to design and implement enterprise security solutions that align with leadership’s business goals, regulatory requirements and organizational risk tolerance.
*) Design, deploy and manage countermeasures to address known security threats and contribute to mitigation strategies for emerging threats to enterprise data, systems and services.
*) Ensure consistent application of security controls across enterprise infrastructure and applications; validate control effectiveness and recommend improvements.
*) Support incident detection and response activities through monitoring, log analysis and reporting.
*) Develop technical documentation, implementation guides and standard operating procedures as needed.
*) Perform other duties as assigned in support of the depart of administration’s division of information security.

Additional duties & skills:
*) Strong understanding of enterprise security architecture and engineering principles.
*) Knowledge of cybersecurity best practices, threat detection, and defensive security strategies.
*) Experience with Linux and Windows operating systems, including system hardening and security configuration.
*) Understanding of networking concepts, security protocols, and secure system design.

Preferred skills (rank in order of importance):
*) Hands-on SIEM administration, analysis, and reporting experience.
*) Experience building and deploying Linux-based security sensors.
*) Familiarity with security frameworks and compliance standards such as NIST CSF, CJIS, IRS 1075, and CMS MARS-E.
*) Resources local to Columbia, Sc or a surrounding city in South Carolina

Required education/certifications:
*) Bachelor's degree in an Information technology or Information security related field
*) Eight years of relevant work experience may be substituted in lieu of education
*) Five years of experience in supporting large it environments and/or system deployments
*) 5+ Years of experience implementing and supporting enterprise security tools (SIEM, CRIBL, XDR, Vulnerability Management, DLP, Endpoint Security).
*) 5+ Years of experience developing automation and integrations using scripting languages such as Python and Bash

Key Skills

Education

Bachelor’s degree