Qualifications:
- Ability to obtain a low-level U.S. security clearance, which requires a thorough background screening and U.S. citizenship
- 5 years of information technology related experience
- 2 years of systems operational support, preferably in cybersecurity arena
- Experience managing cases/incidents
- Experience with security related tools, such as Exabeam, ExtraHop, Cisco Tetration/Secure Workload, Trellix FireEye, and AlgoSec
Education:
- Bachelor’s degree in computer science, information systems, engineering, technology, or related field, or equivalent experience/training
Responsibilities:
- Work directly with other members of the IT business leveraged security tools to manage and configure security tools
- Provide escalation support where needed
- Assist in supporting all processes, procedures, and plans necessary to run the IT
business leveraged security tool systems
- Tune SIEM and security tools operational alerting to reduce false positives, improve productivity, and improve availability capabilities
- Develop automation playbooks
- Deploy prescriptive remediation to security systems
- Participate in 24×7 (on-call) support rotation
- Develop alerts based on current operational conditions
- Mentor and identify training needs for newer analysts to improve support capability within the team
- Collaborate with other teams on operational research and information gathering
- Maintain the SIEM, Endpoint Management, Endpoint Protection Systems (EDR/XDR), and other security tools to support a strong and healthy leveraged security tool systems
- Participate in organizational projects, as required
- Perform incident ticket and vendor case management
- Drive and monitor program metrics
Vaccine Mandate: This job does require COVID-19 vaccination to comply with Executive Order 14042
Location: Hybrid in Columbia, SC.
22-00730, Sr. System Support Administrator
