Title: Security Logs Analyst
Location: Fort Worth, Texas
Duration: 12 months + extensions
Note: This is not an Incident Response, Threat Hunting, or SOC role.
Responsibilities:
- Support enterprise logging and analysis solutions.
- Analyze Log files for suspicious activity.
- Analyze event data for suspicious patterns.
- Analyze log sources, assess threats, and define alerting criteria.
- Develop log policies by creating rules, setting thresholds, and prioritizing alerts based on impact and urgency.
- Work with IR Engineering to configure data ingestion, detection rules, and fine-tune detection.
- Work with CIRT to configure incident creation, explore opportunities to enrich incident data, and assign incidents to CIRT teams.
- Review policies regularly, address false positives/negatives, and stay updated on technology.
Must-have skills:
- Data extraction
- Reporting
- Windows 10
- Windows Server 2019
- Linux Ubuntu 2018
- SQL
- Scripting (Powershell, BASH, Python, etc.)
- Comfortable with occasional travels
Desired skills:
- MySQL
- PowerBI/Tableau
- Anvilogic
- FluentBit
- CompTIA Security+
- Certified Information Systems Security Professional (CISSP)