Elastic Stack Developer
The Vanguard Group
Contract Plano , Texas, United States Posted 4 months ago
About Position
Elastic Stack Developer (Contract)
$80.00 / Hourly
Plano , Texas, United States
Elastic Stack Developer
Contract Plano , Texas, United States Posted 4 months ago
Description
Implements security monitoring and documents standard operations procedures for the Incident Management Team.
Implements security monitoring rules, reports and dashboard while maintaining best practices to ensure maximum security tool efficiency. Monitors security systems, analyzes events and investigates security-related incidents.
Creates Threat Hunting models for Endpoints and Network Traffic. Analyzes endpoint including logging, EDR, IPS and DLP tools. Analyzes network monitoring including IPS, WAF, PCAP and Netflow tools. Focuses on critical systems within Vanguard’s network to detect, respond and handle incidents related to unauthorized activity, malware, and APTs
Keeps management within the department informed by communicating progress, issues, concerns and opportunities. Assesses and immediately notifies manager of any potential information security breech and security issues that may have a negative impact on business operations.
Identifies opportunities to improve the quality, efficiency and effectiveness of the department as well as the processes that affect the divisions and the enterprise. Maintains an awareness of the department's dashboard and provides suggestions to improve performance.
Identifies Tactical Intelligence relevant to Vanguard systems. Works with Incident Management and Threat management to follow incident response procedures to ensure proper detection, mitigation controls.
Escalates internal threat issues to the Insider Threat Team.
Participates in special projects and performs other duties as assigned.
Responsibilities
- Experience creating security monitoring within a SIEM.
- Experience creating alert, dashboards and pipelines in Elastic
- Demonstrated initiative and ability to work independently with attention to detail.
- Demonstrated ability to be flexible and exercise good judgment.
- Demonstrated strong organization and time management skills. Excellent multitasking and time management skills.
- Experience analyzing endpoint logging, detection, response and forensic tools.
- Working knowledge of AWS, Azure or GCP
By applying to a job using PingJob you are agreeing to comply with and be subject to the PingJob Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.
