This contract-to-hire position will begin onsite 5 days a week and then transition to a hybrid role.

I am targeting candidates who are highly proficient in administering a Windows AD domain, have core networking and security system experience, have utilized cybersecurity and penetration testing tools, have a technical understanding of vulnerability remediation, and have hands-on experience working with cybersecurity systems.

Additional skills that I am looking for in a candidate are experience with both AWS and Azure, development in red, blue, and purple team experience, and static and behavioral threat analysis.

DUTIES AND RESPONSIBILITIES:

• Identify, investigate, mitigate, and report on potential threats such as phishing, malware, and network attacks through technical and written assessments.
• Perform detailed static and behavioral analyses on emails, applications, websites, and cloud applications.
• Assist with developing, conducting, and reporting on Red, Blue, and Purple Team exercises conducted internally and by 3rd-parties from a technical perspective.
• Assist with penetration testing, results analysis, recommendations, remediation planning and implementation, and reporting.
• Conduct regular assessments of industry best practices and benchmark standards and make recommendations for implementation and reporting.
• Administer enterprise SIEM and Vulnerability Management solutions and related tools, including proactive event monitoring with independent analysis and assessments, containment and remediation recommendations, alert tuning, and cloud and on-premise solutions integrations.
• Utilize incident response procedures and workflows for triage, analysis, notification, escalation, containment, remediation, and reporting.
• Active participation in the Security Awareness Program, providing guidance for and conducting IT and Staff training, simulated phishing campaigns, and reporting.
• Provide clear and detailed written analysis, reports, and tickets for technical and executive audiences.

DESIRED QUALIFICATIONS/EXPERIENCE:

• Bachelor’s degree in information technology or a related technical discipline with at least two years of experience working in a Cybersecurity role.
• A background with at least three years in Systems Administration or Engineering focusing on Windows-based environments is required; additional familiarity with Linux, Mac, and Cloud environments (AWS, Azure) is preferred.
• Cybersecurity-related certifications (or ability to obtain certification) such as Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), GIAC GSEC Certified (GIAC), CompTIA Cybersecurity Systems (CySA ).
• Hands-on experience in cybersecurity and network analysis tools, network topologies, intrusion detection methodologies, Windows systems, and preferably Linux systems analysis for evidence of compromise.
• Familiarity with industry best practices and benchmark standards such as NIST SP 800-53, CIS, CISA, FFIEC Booklets, and Critical Security Controls.