51 to 75 of 142 Intrusion Detection Jobs

an IT Security Analyst, with a focus on Microsoft technologies and SIEM tools. - In-depth knowledge of security principles, protocols, and technologies, including firewalls, intrusion detection/prevention systems, and endpoint security solutions. - Hands-on experience with Microsoft Azure, Active Directory, and related security features. - Proficiency in configuring more »

configs, running processes, etc.) on these systems for further investigation. Determines and directs remediation and recovery efforts. Key Responsibilities Manage security tools such as intrusion detection and prevention systems • Assist Team Leads with reporting, projects, administrative work as needed • Monthly SOC Reports Provide Incident Response (IR) support from more »

CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection more »

bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, with 8-12 years of professional experience and at least 5 years in incident detection and response and/or cyber intelligence analysis. Maintain and drive the development of new reports of Cyber Threat Intelligence analysis to peers, management … Intelligence Training/Experience. Knowledge of Structured Analytic Techniques Host-based and network-based forensics related to the identification of advanced cyber threat activities, intrusion detection, incident response, malware analysis, and security content development (e.g., signatures, rules etc.); and cyber threat intelligence. Proficiency in one more of the … following computer languages Python, Bash, Visual Basic or Powershell in order to support cyber threat detection or reporting. Ability to develop scripts to support cyber threat detection that outputs results in a variety of formats, such as VB scripts, Python, C++, HTML, XML or other type most appropriate more »

SOC Analysts work within a four-day operational rota, collaborating closely with Digital Forensic and Incident Response teams. Responsibilities include: Security Monitoring and Incident Detection: Utilizing SIEM tools to identify potential security incidents and anomalies. Analyzing alerts and log data to assess the severity and impact of threats. Incident … improvement recommendations. Maintaining accurate records of incidents, investigations, and security-related activities. Security Tools Management: Configuring, updating, and maintaining security tools such as firewalls, intrusion detection/prevention systems, endpoint protection, and SIEM solutions. more »

SOC Analysts work within a four-day operational rota, collaborating closely with Digital Forensic and Incident Response teams. Responsibilities include: Security Monitoring and Incident Detection: Utilizing SIEM tools to identify potential security incidents and anomalies. Analyzing alerts and log data to assess the severity and impact of threats. Incident … improvement recommendations. Maintaining accurate records of incidents, investigations, and security-related activities. Security Tools Management: Configuring, updating, and maintaining security tools such as firewalls, intrusion detection/prevention systems, endpoint protection, and SIEM solutions. TPBN1_UKTJ more »

have been compromised with Ransomware/Data breaches. Tech, Experience & Qualifications: Experience working in Managed service provider (MSP) environments. Network security principles, including firewalls, intrusion detection/prevention systems, and VPN technologies. Fortinet Firewall, FortiSIEM, FortiEDR beneficial or equivalent firewalls Certifications in relevant technologies such as Microsoft Azure more »

have been compromised with Ransomware/Data breaches. Tech, Experience & Qualifications: Experience working in Managed service provider (MSP) environments. Network security principles, including firewalls, intrusion detection/prevention systems, and VPN technologies. Fortinet Firewall, FortiSIEM, FortiEDR beneficial or equivalent firewalls Certifications in relevant technologies such as Microsoft Azure more »

protocols, technologies, and tools, including LAN, WAN, VPN, DNS, DHCP, TCP/IP, etc. Experience with network security protocols and practices, such as firewalls, intrusion detection/prevention systems, and endpoint security. Proficiency in network monitoring and troubleshooting tools. Excellent communication and interpersonal skills, with the ability to more »

analytical (RCA) skills. Good working knowledge of Cisco Meraki and associated technologies. Practical knowledge of Continual Service Improvement (CSI) methodologies. Vulnerability management and assessment. Intrusion detection and prevention analysis/frameworks. Solid exposure to cloud based applications security and provisioning. Experience in writing policy, process, and standard playbooks. more »

CBP) Security Operations Center (SOC) is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring, intrusion detection and protective security services to CBP information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection more »

of the following as possible: * Security operations management * DevOps or software development roles, with a focus on security. * Security tools such as vulnerability scanners, intrusion detection systems, & security information & event management (SIEM) solutions. * Multi cloud environments AWS & Azure etc. * Using & managing Splunk including defining data streams, indices & ingests more »

on safeguarding sensitive data and intellectual property. Security Operations: Oversee the day-to-day management of security systems and protocols, including incident response, threat detection, and vulnerability management. Security Awareness: Develop and deliver comprehensive training programs to promote a culture of security awareness and best practices among employees. Vendor … of relevant regulatory frameworks, such as ISO, GDPR, HIPAA, and FDA regulations. Strong understanding of security technologies and methodologies, including encryption, access control, and intrusion detection systems. Excellent communication and leadership skills, with the ability to collaborate effectively across diverse teams and stakeholders. Relevant certifications such as CISSP more »

Operations Security Center (NOSC) Cyber is a US Government program responsible to prevent, identify, contain and eradicate cyber threats to DHS networks through monitoring, intrusion detection and protective security services to DHS information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connection … minimum of a bachelor's degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field PLUS two (2) years of experience in incident detection and response. Must have TS/SCI In addition to specific security clearance requirements all Department of Homeland Security SOC employees are required to more »

post-incident reviews. Enable threat hunting through the fusion of threat intelligence and business risk analysis. Requirements: Strong understanding of network protocols, firewalls, and intrusion detection/prevention systems. Proficiency in securing operating systems such as Windows, Linux, and macOS. Knowledge of large-scale security technology deployments (SIEM more »

working in Information/Cyber Security, ideally in a technical hands on/engineering role. Hands-on experience with security tools such as firewalls, intrusion detection/prevention systems, antivirus software, and SIEM solutions. Experience with cloud security principles and practices with either AWS or Azure. Experience implementing more »

working in Information/Cyber Security, ideally in a technical hands on/engineering role. Hands-on experience with security tools such as firewalls, intrusion detection/prevention systems, antivirus software, and SIEM solutions. Experience with cloud security principles and practices with either AWS or Azure. Experience implementing more »

and safe practices Risk Assessment: Evaluate risks associated with new technologies or system changes Network Security: Advise in the configuration and maintenance of firewalls, intrusion detection/prevention systems, and other security infrastructure Security Documentation: Maintain accurate records of security configurations, incidents, and procedures Security Policies: Help enforce more »

deployment, migration, and upkeep of Microsoft 365 cloud services. Hyper-V and VMWare infrastructures, including clustering. implement, and manage network security solutions, including firewalls, intrusion detection/prevention systems, VPNs, and secure access controls. regular security assessments and penetration testing to identify vulnerabilities and recommend remediation measures. network more »

actions taken, and recommendations for improvement. Maintain accurate records of incidents, investigations, and security-related activities. Configure, update, and maintain security tools, including firewalls, intrusion detection/prevention systems, endpoint protection, and SIEM solutions. Who? I would be interested in speaking with both candidates with experience in cyber more »

collaboration with the Head of Information Security Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the first more »

on’ IT Security analysis and engineering experience including securing systems, networks and infrastructure; operational support, including on-call experience.3+ years’ experience including combination of intrusion detection, malware analysis, forensics and/or incident response, particularly in cloud environments. Working knowledge of cloud environments such as AWS. Monitor, tune more »

security Interpret and assess impact from device scanning (device discovery, Operating System (OS) fingerprinting, service scanning), and passive (non-intrusive) scanning, monitoring and operating intrusion detection systems Act as IS focal point for cyber incidents and lead IS response to security incidents and alerts Conduct vulnerability assessments and more »

access. Participates in the certification and accreditation processes; performs technical vulnerability assessments of computer security. Provides business continuity and disaster recovery support. Engages in intrusion detection and prevention; provides incident reporting and response support. Conducts ongoing monitoring of computer security requirements and compliance, maintains system security plans and more »

to diagnose and resolve complex network issues. Relevant certifications (e.g., CCNA, CCNP, CISSP) preferred. Strong knowledge of network security principles and practices, including firewalls, intrusion detection/prevention systems, and access control. If your interested and have prior Higher Education experience please apply now more »