Cyber Security Incident and Event Management/Elastic Specialist Job at Diligent Consulting Inc, Washington DC

ODhiWVg5OFk2bitqdkl2eTBnTWNmSlpDd0E9PQ==
  • Diligent Consulting Inc
  • Washington DC

Job Description

US CITIZEN ONLY. SECRET CLEARANCE REQUIRED.  MUST HAVE IT-II CERT (IE SECURITY+)

SIEM/Elastic Specialist will:

• Be responsible for designing & setting up the ingestion of various customer data flows to include pre-processing data into a useable format, ensuring proper parsing and indexing
• Collaborate with cross-functional teams and responsible for designing & integrating Elastic with a wide variety of data sources and developing associated knowledge objects such as queries, dashboards, reports, alerts for monitoring and analytics
• Perform data transformation using Elastic query language 
• Track the health of the Elastic environment and optimize its performance. Troubleshoot and resolve issues related to security, performance, data indexing, and searches
• Perform watch-officer monitoring duties, including:
○ monitoring, detecting, investigating, and responding to cybersecurity threats and events using Elastic /SIEM Platform
○ Reviewing correlated alerts and logs for compromise scenarios
○ Performing triage of security alerts to prioritize response
○ Identifying false positives
○ Investigating security incidents and determining root cause
○ Collecting and preserving logs for analysis
○ Escalating confirmed incidents to leadership or SOC teams
○ Coordinating with IT or DevOps for containment and remediation
○ Creating after-action reports (AAR) post-incident
• In addition, the role may include assistance with monitoring Vulnerability Management tools, such as ACAS and ePO.

QUALIFICATIONS:

• Have at least three years of working knowledge and hands-on experience with Elastic/Splunk query languages, monitoring SIEM dashboards and real-time alerts, fine-tuning SIEM rules to reduce noise, and NIST 800-53 & DevSecOps frameworks

 

Job Tags

Full time,

Similar Jobs

VIP Cinemas

Theater Manager Job at VIP Cinemas

 ...Theater Manager - Immediate Hiring Are you passionate about managing a theater and creating memorable experiences for audiences? We are looking for a highly skilled and dynamic Theater Manager to join our team. As a Theater Manager, you will have the opportunity to... 

Duncan Family Farms

General Labor - Harvest Job at Duncan Family Farms

 ...Now Hiring: General Labor Harvest Location: Goodyear, Arizona Department: Harvest | Reports to: Harvest Crew Lead About Us At Duncan Family Farms , we're more than just a farm we're a community dedicated to growing clean, healthy, life-giving... 

Nexus at Westmont

Weekend Nurse Supervisor (RN) Job at Nexus at Westmont

 ...Join us at the Nexus of care and compassion. Weekend Nurse Supervisor (RN) Benefits: Employee rewards program Growth from within Next day pay available Tuition reimbursement Team oriented work environment Weekend Nurse Supervisor (RN) Responsibilities... 

Gartner, Inc.

Director, Security Operations Job at Gartner, Inc.

 ...This role supports Gartners growing Security Operations team. You will lead day-to-day...  ...customers, and Information Technology. The Director, Security Operations role is highly...  ...1979, weve grown to 21,000 associates globally who support ~14,000 client enterprises in... 

Commonwealth of Massachusetts

2026 Police Officer (March) Job at Commonwealth of Massachusetts

 ...NOT create a new account to apply for this exam. Utilize the Government Jobs Help & Support to access your account. Online Employment...  ...experience of potential relevance to successful performance of entry-level Police Officers. The WSQ is designed to assess certain...