Cyber Defense Analyst

Location: OWINGS MILLS, MD, United States
Organization: Exelon Business Servcs Co, LLC
Job ID: 222705
Date Posted: Nov 6, 2019

Share: mail

Job Description

Description

At Exelon, we've got a place for you!

Join the nation's leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is focused on performance, thought leadership, innovation, and the power of ideas that come from a diverse and inclusive workforce.

Exelon will provide you the tools and resources you need to design, build and enhance a successful career. We are also dedicated to motivating the success of our employees through competitive base salary, incentives, and health and retirement benefits.

Join Exelon and share your passion at a forward-thinking Fortune 100 company. Establish yourself in a place where you can truly shine and create a brighter, more sustainable tomorrow. Energize your career at Exelon!

PRIMARY PURPOSE OF POSITION:

Perform the Security Monitoring process and escalate relevant issues to the Security Monitoring Team Lead.  Identify potential
security incidents and forward to the Incident Handling  Response team for analysis and remediation as appopriate.

PRIMARY DUTIES AND ACCOUNTABILITIES:

- Complete Cyber Monitoring and Incident Response Operations Playbook/Checklist activities including, but not limited to: log
review, vulnerability management activities, management report scheduling and running, alert analysis, filter modifications and escalation follow up activity status.

- Develop, tune, and maintain tools to automate analysis capabilities for network-based, host-based and log-based security event analysis. Create signatures, rulesets, and content analysis definitions from various intelligence sources for a variety of security detection capabilities.

- Organize and maintain documentation of detection capabilities, alert definitions, policy configurations, and tool rulesets. 
- Maintain adherence to Corporate Security Operations Center standards, policies and procedures.

- Remain up-to-date on the latest security information in order to validate the security analysis and identification capabilities of the security operations technologies.

- Participate in efforts to analyze and define security filters and rules for a variety of security parameters.

Qualifications

POSITION SPECIFICATIONS

Minimum:


- Bachelors Degree in Computer Science or a related 4-year technical degree (or a minimum 4 years of IT experience)

- Minimum 3 years IT Security experience

- Core Technical: Intrusion Detection, Netflow Analysis, Log Analysis, Rule/Signature/Content Development, Programming or scripting experience required.

- General: Must exhibit understanding and application of the principles of Network Security Monitoring (NSM).

 

- Ability to analyze log data, netflow data, alert data, network traffic and other data sources to validate security events. Ability to create signatures and detection content in IDS, SIEM and Log analysis platforms.

 

- Ability to consume, comprehend, utilize and create indicators of compromise. 

 

- Ability to tune detection tools for accuracy. Execute on intelligence-driven detection capabilities.

 

- Perform daily analysis of detection reports and alerts.

 

- Maintain tools, scripts and applications for detection and automation capabilities.

 

- Ability to conduct network and host analysis of compromised and baseline systems to identify anomalies.

 

- Exhibit understanding of tools, tactics and procedures (TTP) of malicious actors such as hacktivist groups, cybercrime organizations and advanced persistent threats. 

 

-  Identify and report on detection trends. Comprehensive knowledge of common networking protocols: HTTP, DNS, DHCP, SMTP, NTP, SSH, FTP.

Preferred:

- General Info Security: Intelligence - Driven Detection, Security Principles, Threat Lifecycle Management, Incident Management andn Lifecycle, Platform Analysis, Forensics and Investigations, NSM, DFIR

- Cyber SOC Process Management: Overall Process Design and SOC Threat Management, Teamwork, Collaboration and independent contributions

- Malware Analysis experience preferred. 

 

- Provide near real-time monitoring of business centric risks to Exelon by identifying potential security incidents from security alerts.


---

Exelon is proud to be an equal opportunity employer and employees or applicants will receive consideration for employment without regard to: age, color, disability, gender, national origin, race, religion, sexual orientation, gender identity, protected veteran status, or any other classification protected by federal, state, or local law.

VEVRAA Federal Contractor

EEO is the Law Poster

Share: mail

Similar Jobs

Lead Analyst IT - Corrective Action Program

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Lead IT Analyst, Real-Time Systems - OMS

Baltimore, MD, United States
Exelon Business Servcs Co, LLC

IT Project Manager - Enterprise

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Manager IT - Oracle Database Operations

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Cyber Defense Analyst

OWINGS MILLS, MD, United States
Exelon Business Servcs Co, LLC

Business Analyst IT

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Principal Solutions Architect - ERP Modernization

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Sr. Manager IT - ERP Modernization

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Sr. Manager, IT Project Management - Enterprise

BALTIMORE, MD, United States
Exelon Corporation

Principal Project Manager

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Lead Analyst IT – Application Platform Design and Support

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Lead, Unix Application Support

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Cyber Defense Forensics Analyst - eDiscovery / Legal

OWINGS MILLS, MD, United States
Exelon Business Servcs Co, LLC

Lead Analyst IT - Customer System Architect-Analyst

WINDSOR MILL, MD, United States
Exelon Business Servcs Co, LLC

OMS IT Lead Analyst

Baltimore, MD, United States
Exelon Business Servcs Co, LLC

.NET Developer

OWINGS MILLS, MD, United States
Exelon Business Servcs Co, LLC

Sr Analyst IT

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Full Stack Developer

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Sr. Project Manager IT

BALTIMORE, MD, United States
Exelon Business Servcs Co, LLC

Customer System Environment Manager

Baltimore, MD, United States
Exelon Business Servcs Co, LLC

Java Developer

Baltimore, MD, United States
Exelon Business Servcs Co, LLC

Frequent Job Searches

Recently Viewed Jobs

Most Recent Job Searches

Relevant Jobs