- 经验
- 2-3岁
- 薪水
- —
- 职位空缺
- 1
- 发布
- 6小时前
- 工作模式
- 在办公室
- 学历
- 学士学位
- 恢复
- 需要申请
职位描述
Position Overview
The Junior Security Specialist role involves supporting cybersecurity functions by monitoring security systems, conducting vulnerability assessments, and aiding incident response under the guidance of a Cybersecurity Lead.
Key Duties
- Continuously monitor security information and event management (SIEM), endpoint protection, intrusion detection/prevention systems (IDS/IPS), and other security monitoring tools.
- Conduct vulnerability scanning using tools such as Tenable, Nessus, and BigFix.
- Analyze security alerts to perform initial triage of potential incidents.
- Assist with investigations of security incidents and document the findings thoroughly.
- Help track remediation actions for identified vulnerabilities and update Plans of Action and Milestones (POA&M).
- Examine audit logs to detect unusual or suspicious activities.
- Maintain cybersecurity operational documents, standard operating procedures (SOPs), and records.
- Support preparation of weekly status reports, vulnerability metrics, and reports intended for executive management.
- Engage in threat hunting exercises, lessons learned sessions, and ongoing monitoring initiatives.
- Assist in ensuring compliance with cybersecurity standards and requirements imposed by NIST, FISMA, DOJ, and EOIR.
Minimum Qualifications
- Bachelor’s degree in Cybersecurity, IT, Computer Science, or a related field, or equivalent professional experience.
- 2 to 3 years of relevant experience in cybersecurity operations, vulnerability management, or incident response.
- Familiarity with vulnerability scanners and security monitoring platforms.
- Basic knowledge of SIEM systems, endpoint security mechanisms, Windows security logs, and networking principles.
- Strong skills in analysis, problem-solving, and documentation.
- Capability to obtain and keep a Department of Justice (DOJ) Public Trust clearance.
Preferred Certifications
- CompTIA Security+
- CompTIA CySA+
- Certified System Security Professional (SSCP)
- GIAC Security Essentials Certification (GSEC)
- Microsoft Security Certifications
- Splunk Core Certified User or equivalent credential