UM
Junior Security Specialist
United States · Contrato
Seja o primeiro a se candidatar
- Experiência
- 2–3 anos
- Salário
- —
- Vagas
- 1
- Publicado
- há 3 horas
- Modo de trabalho
- No escritório
- Educação
- diploma de bacharel
- Retomar
- Obrigatório candidatar-se
Descrição da vaga
Position Overview
The Junior Security Specialist role involves supporting cybersecurity functions by monitoring security systems, conducting vulnerability assessments, and aiding incident response under the guidance of a Cybersecurity Lead.
Key Duties
- Continuously monitor security information and event management (SIEM), endpoint protection, intrusion detection/prevention systems (IDS/IPS), and other security monitoring tools.
- Conduct vulnerability scanning using tools such as Tenable, Nessus, and BigFix.
- Analyze security alerts to perform initial triage of potential incidents.
- Assist with investigations of security incidents and document the findings thoroughly.
- Help track remediation actions for identified vulnerabilities and update Plans of Action and Milestones (POA&M).
- Examine audit logs to detect unusual or suspicious activities.
- Maintain cybersecurity operational documents, standard operating procedures (SOPs), and records.
- Support preparation of weekly status reports, vulnerability metrics, and reports intended for executive management.
- Engage in threat hunting exercises, lessons learned sessions, and ongoing monitoring initiatives.
- Assist in ensuring compliance with cybersecurity standards and requirements imposed by NIST, FISMA, DOJ, and EOIR.
Minimum Qualifications
- Bachelor’s degree in Cybersecurity, IT, Computer Science, or a related field, or equivalent professional experience.
- 2 to 3 years of relevant experience in cybersecurity operations, vulnerability management, or incident response.
- Familiarity with vulnerability scanners and security monitoring platforms.
- Basic knowledge of SIEM systems, endpoint security mechanisms, Windows security logs, and networking principles.
- Strong skills in analysis, problem-solving, and documentation.
- Capability to obtain and keep a Department of Justice (DOJ) Public Trust clearance.
Preferred Certifications
- CompTIA Security+
- CompTIA CySA+
- Certified System Security Professional (SSCP)
- GIAC Security Essentials Certification (GSEC)
- Microsoft Security Certifications
- Splunk Core Certified User or equivalent credential