Required Skills • Ability to create queries and alerts that feed into a dashboard for monitoring and analysis of various logs • Experience with creating Splunk dashboards • Provide analysis and review of Splunk audit logs to include OS, database, and application logs • Experience in evaluating query results and reporting results to the customer in report format • Strong writing skills to create documentation such as SOPs, internal process documents and input into cyber policies • Ability to coordinate with external projects and customers to ensure audit log ingest • Understanding of creating ITSI Glass Tables • Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction • Ability to assess, plan, and enact security measures to help protect an organization from security breaches and attacks on its computer networks and systems. • Analyzes all relevant cyber security event data and other sources for attack indicators and potential security breaches • Applies knowledge of Information Assurance Vulnerability Alerts (IAVAs) • Detects, triages, investigates, responds and reports on all of the monitored networks • Demonstrates experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM • Demonstrates experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC) • Demonstrated experience with compliance and vulnerability scanning tools (XACTA, RedSeal, Nessus, Splunk, McAfee ePO, and/or other vulnerability scanners) • Experience with cloud technologies to include Amazon and Azure • Excellent writing and communication skills Powered by JazzHR