Information Security Investigator Job in RTP, NC

This job is no longer active. View similar jobs.

POST DATE 9/15/2016
END DATE 10/30/2016

Modis Durham, NC

Company
Modis
Job Classification
Full Time
Company Ref #
23133812.21603653
AJE Ref #
576183290
Location
Durham, NC
Job Type
Regular
Required Licenses/Certifications
df-aj

JOB DESCRIPTION

APPLY
span B Information Security Investigator Job in RTP, NC /B span style='color:#000000;background-color:transparent;font-family:Times New Roman;font-size:12pt;font-weight:normal;font-style:normal;' br   br The Information Security Investigator has a deep technical understanding of our client's Managed Security Services (MSS) technologies: intrusion analysis, anomalous behavior analysis, and threat intelligence. This senior role is entrusted with intimately advising Clients of threats and breaches, and must have the ability to lead and direct Security Analysts and fellow Investigators. The Investigator is required to maintain a thorough understanding of the Customer environment and reflect such knowledge in Customer tickets, guidance to staff, and in Customer briefings. The Investigator will remain up-to-date on active security threats and events across all sectors with specific focus on Customer sectors, specifically financial, retail, medical, and energy. The Investigator will work in an assigned shift, and is required to be present physically and via secure messaging such as WebEx, Telepresence and Cisco Jabber. Constant interaction with the SOC staff is required. br   br /span B Security Investigator Duties /B span style='color:#000000;background-color:transparent;font-family:Times New Roman;font-size:12pt;font-weight:normal;font-style:normal;' br   /span br ul
li Conduct in-depth investigations into security breaches using all available tools within Customer environment, our client, and online: Review device logs, full packet capture, and all forms of telemetry, interpret  data /li li Conduct online forensic investigations of devices (UNIX, Windows hosts and other  platforms) /li li Interview personnel to obtain information related to  investigation /li li Maintain up-to-date Information  in a secure case management  system /li li Identify, advise and implement incident mitigation actions, using the following tools: null routing, Firewall ACL changes, DNS RPZ /li li Next-Generation IPS, Web Security and Email Security /li li Endpoint and Network Advanced Malware Protection systems account disabling and application off lining /li li Resolve cases escalated from Security Analysts (either as escalated ticket to customer or resolving as false positive.} Resolve cases dispatched from Customers, maintain daily dialog with Customer on case until   resolved /li li Effect resolution by driving coordination across infrastructure, law enforcement, human resources, legal, and lines of   business /li li Vigilantly protect Customer data, ensuring proper handling and protection electronically,  physically, and  verbally /li li Ensure assigned shift is covered personally or attended by an alternate  Investigator /li li Share incidents and intelligence via conference presentations, intelligence exchanges, informal mailing lists, and social   media /li li Mentor Analysts  in investigative skills and customer communications /li li Maintain quality assurance for all processes /li li Conduct threat research to determine how Clients are affected by  threats /li /ul
span style='color:#000000;background-color:transparent;font-family:Times New Roman;font-size:12pt;font-weight:normal;font-style:normal;'   br /span B Technical Skills /B span style='color:#000000;background-color:transparent;font-family:Times New Roman;font-size:12pt;font-weight:normal;font-style:normal;' br   /span br &lt