We are seeking a Cyber Security Analyst II to join our client's team in Richland, WA.
The ideal candidate will have a strong understanding of Security Information and Event Management (SIEM) systems, preferably Trellix, and experience in maintaining and optimizing logging infrastructure for security monitoring. Responsibilities include ensuring logs are collected, processed, and stored correctly, complying with regulatory requirements and internal security protocols, and collaborating with IT and security teams to manage log data and improve SIEM functionality.
Principal Accountabilities:
Serve as the technical expert for an on-premise SIEM.
Update SIEM software to current versions.
Monitor log data, ensuring data integrity.
Collaborate with cross-functional teams to improve log quality.
Execute response activities, including incident response, management, remediation, and forensic analysis.
Identify and address security weaknesses.
Facilitate internal skills development for information security personnel.
Ensure logs align with compliance and regulatory standards for nuclear power facilities.
Maintain proper documentation and change management procedures.
Continuously evaluate and enhance the SIEM setup.
Required Education and Experience:
Bachelor's degree in Computer Science, Information Security, or a related field.
Minimum of 7 years of experience in cybersecurity or IT, with at least 3 years focused on SIEM administration and management.
Desired Education and Experience:
Proven experience with Trellix SIEM software or similar platforms.
Required Abilities and Skills:
Strong knowledge of security event logging standards, data parsing, and event correlation.
7 years of relevant experience.
Desired Abilities and Skills:
Familiarity with compliance requirements and regulations in critical infrastructure environments, preferably in the nuclear or energy sector.
Contact: kgregor@judge.com
This job and many more are available through The Judge Group. Find us on the web at www.judge.com