Cybersecurity Incident Response Administrator

Job Description: • Manage Security Information and Event Management (SIEM) systems including deployment, installation, infrastructure management, and event monitoring • Create SIEM dashboards to display clear visualizations of security events for anomaly detection and near real-time threat investigation • Monitor SIEM dashboards to detect threats and anomalies, investigate events, and escalate as necessary • Assess and develop reporting requirements to support audits and security controls • Provide Public Key Infrastructure (PKI) support and manage SSL/TLS certificates • Monitor DoD and Army web application security standards and best practices • Review Army Cyber Tasking Orders (CTOs) and coordinate with Army Cyber Security Service Providers • Participate in SW Assurance reviews and evaluate Information Systems Design Plans for compliance with security regulations and best practices Requirements: • High School with 9+ years (or commensurate experience) • Clearance Required: Secret • Cybersecurity Certification (such as CISSP/ISSEP/Security+/CEH/etc.) • 9+ years’ experience with Cybersecurity and Incident Response or related areas • Extensive experience managing Security Information and Event Management (SIEM) systems • Experience in developing reporting requirements for audits and security controls • Knowledge of Public Key Infrastructure (PKI) and managing SSL/TLS certificates • Familiarity with DoD and Army web application security standards and best practices • Ability to review and respond to Army Cyber Tasking Orders (CTOs) • Ability to review and evaluate Information Systems Design Plans and related documents for security compliance Benefits: • Employee Assistance Program (EAP) • Corporate Discounts • Learning & Development platform, to include certification preparation content • Training, Education and Certification Assistance* • Referral Bonus Program • Internal Mobility Program • Pet Insurance • Flexible Work Environment Apply tot his job