3. /r/netsec's Q4 2015 Information Security Hiring Thread

/r/netsec's Q4 2015 Information Security Hiring Thread

I work for Apex Systems, 2nd largest IT staffing firm in the nation.

We have a high-urgent and high-visible Senior Information Security Analyst opportunity for a large reputable e-commerce company in San Jose, CA. This Sr. InfoSec Analyst will join a 20-person Security Operations Center team, and priorities will include: threat analysis, monitoring threats/risks, developing security rules and alerts, creating InfoSec protocol and processes, and other InfoSec responsibilities to ensure organization is secure. This is a very long-term contract (renewable 12+ months), and salary range is open (100-160K with potential flexibility based on skills and experience). Additional perks include: free breakfast and casual work environment, 20% remote work potential, training for major InfoSec certifications (CISSP, CEH (Ethical Hacker), etc…), career development workshops, technical training webinars, transportation, benefits, matching 401K after 12 months, and more! Opportunity to join the Cybersecurity team- the CTO’s number 1 objective for 2016 is InfoSec!

Applicants must have Splunk SPL query experience OR ArcSight query language experience!

Key details of Senior Information Security Analyst: * Support the Security Operations Center (SOC) environment by developing content, creating rules, alerts, and use cases. * Developing security alerts used by the SOC, to alert against malware, penetration/intrusion, password locks, brute force, etc. fast paced eCommerce company placing a high priority in growing their Cyber / Information Security department and controls

Tools & Tech: Use Splunk as their SIEM and logging tool

Requirements of Senior Information Security Analyst: * Experience writing security alerts / security use cases * Experience analyzing logs (Splunk) * Experience with Splunk Query Language (Splunk SPL – search processing language) or other languages leveraged by SIEM Platforms * Security Operations or Security Command Center experience (SOC) or Incident Response experience

Pluses of Senior Information Security Analyst: * Experience querying with Splunk SPL * Any experience with Bash Unix Scripting and/or Arcsight’s logging query language

Please note that we can provide training on Splunk, Bash Unix Scripting, and a variety of other technologies!

Examples of security alerts:
* If a user attempts 25 logons with a failed password to any system they will be locked out and an alert will trigger for the SOC. * If a user is attempting to logon from 2 geographic locations within 10 minutes an alert will be triggered for the SOC.

/r/netsec Thread
Previous
Next

Recently removed from /r/netsec

Tracking Anonymized Bluetooth Devices via BLE security flaw PoC || GTFO 0x19 (Github Mirror) /r/netsec's Q1 2019 Information Security Hiring Thread The /r/netsec Monthly Discussion Thread - December 2018 /r/netsec's Q3 2018 Information Security Hiring Thread Simple hack bypasses iOS passcode entry limit, opens door to brute force hacks Google bug bounty for security exploit that influences search results Cybereason RansomFree detects and blocks WannaCry using behavioral based detection (video link, details in comment) PINs and passwords can be stolen just by watching the way a phone tilts Bella: A pure python, post-exploitation, data mining tool and remote administration tool for macOS. 2015 Vice article reveals Spotify allows for brute-force password collection. There is still no login failure/password reset to this day. More details in comments. Cryptkeeper Sets the same password "p" for everything independently of user input /r/netsec's Q1 2017 Information Security Hiring Thread A Formal Security Analysis of the Signal Messaging Protocol [PDF] Warberry Pi- Tactical Exploitation

More Random Comments

Are there apps that will send me an email when PHP errors happen? If so, what are some good ones I should know about? Front Page CNN article mentions this sub specifically Kid version of different characters drew by oda Sure man, you converted your kids assistant principal into a flat earther. The narrative that we as individuals can "do our part" to solve climate change is untrue and dangerous. How do I ease the tension after I hookedup with a girl? /r/BravoRealHousewives daily OT thread. Today is November 10, 2019 The MacBook is a disaster (?) Living wages aren’t paid by villains You're standing right in front of the best example in the whole world that proves that walls don't work. Thank you r/Visible for free stuff “Additional cashiers to the front lanes.” We hear you, but we just don’t have time to do your silly backup. We’re drowning in push, reshop, sales planners and our 1;1. K thanks As a Gen-Xer, sitting to the side and watching boomers and millennials fight Have any of you had to swallow your pride and return to a menial life position after a major failure? I’m an MtF and I’m sick of the trans cult. I admit that trans women are men.