Information Security Specialist-Intermediate
Garmisch-Partenkirchen, Bavaria, Germany
- Provides Information Security services in support of requirements set forth in applicable DOD/GCMC Information Assurance/Cybersecurity policies, instructions and guidance to reduce the risk of security compromise to GCMC IT systems and network. All services shall be performed in accordance with the requirements outlined below:
- Installs and maintains network and Endpoint Security Solutions (ESS) components for GCMC IT assets. This includes but not limited to management of ESS rules and requirements, monitoring of anomalies and security events, and, in coordination with the GCMC Information System Security Manager/Officer (ISSM/ISSO), taking actions necessary to prevent unauthorized events from occurring. The Contractor shall be fully trained and experienced in ESS configuration, operation and monitoring.
- Supports the GCMC Information Security System Manager/Officer (ISSM/ISSO) in the configuration and maintenance of event log feeds from computer systems and IT network and security devices to an asset security information and event management (SIEM) system. The Contractor shall support the configuration and monitoring of the SIEM for indications of unauthorized activity, identification of anomalous events, correlation of events with other system event logs, configuration of notifications, and remediation of discovered vulnerabilities in accordance with DOD/GCMC guidance.
- Perform IT asset vulnerability scanning utilizing the Assured Compliance Assessment Solution (ACAS), or similar GCMC/DOD approved tools, for Information Assurance Vulnerability Alert (IAVA) compliance, general vulnerability remediation, and validation of compliance as required, and ensure results/reports are updated in applicable GCMC/DOD systems such as, but not limited to, the Enterprise Mission Assurance Support System (eMASS). The Contractor shall be fully trained and experienced in ACAS and vulnerability management operations.
- Support implementation and documentation of GCMC security policies and procedures for computer systems and IT assets which may include but are not limited to email and web security appliances to identify, report and resolve security violations or suspected or actual breaches (actual or attempted intrusion, phishing and social engineering attempts, computer viruses, worms, Trojan horses, etc.) based on guidance from the Government.
- Supports the GCMC Alt Token initiative in accordance with established guidelines and procedures and in coordination with the Information Assurance Team lead.
- Receive direction from and provide basic level Incident Response in support of the Information Assurance team forensics capabilities.
- Provides Tier 2 support to the Help Desk for any Information Assurance tasks.
Requirements
- IAT II Security+
- McAfee ESS 201 Administrator ePO (within 90 days of commencement of service)
- McAfee ESS 301 Advanced Administrator (within 120 days of commencement of service)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Compliance DoD Endpoint security Forensics Incident response Monitoring SIEM Vulnerabilities Vulnerability management
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs