Security Analyst - Project Lead

DP Professionals

Columbia, SC(remote)

Apply

JOB DETAILS

SKILLS

Administrative Skills, Analysis Skills, Computer Security, Customer Relations, Documentation, Firewall Administration, Identify Issues, Incident Response, Information/Data Security (InfoSec), Intrusion Detection Systems, Intrusion Detection and Prevention (IDP), Intrusion Prevention Systems, Linux Administration, Linux Networks, Malware, Microsoft Active Directory, Network Administration/Management, Network Design, Phishing, Problem Solving Skills, Protective Services, Reporting Dashboards, Reporting Skills, Root Cause Analysis, Security Analysis, Security Attacks, Security Information and Event Management (SIEM), Security Monitoring, VPN (Virtual Private Network), Value Selling

LOCATION

Columbia, SC

POSTED

4 days ago

DPP is seeking a Security Analyst / Project Lead to support statewide security incident response.

Work location: Remote, hybrid, onsite
Duration: 12 months
Terms: W2 position

Position summary:

As a Tier-2 SOC Analyst for Information Security you will focus on supporting security monitoring, threat detection, security incident response and security investigations.
Engaging directly with state agencies to promote, support, and improve adoption of centralized security services is a key focus.

Responsibilities:

Continuously review and correlate security event data across SIEM, EDR, IDS/IPS, and threat intelligence sources to identify complex attack patterns, emerging threats, and security incidents.
Perform deep-dive analysis of suspicious activity, validate incidents, determine root cause and impact, and escalate critical incidents with detailed context to Tier 3 as required.
Create detailed incident reports, timelines, and post-incident summaries; contribute to lessons-learned documentation and recommendations for remediation and preventative measures.
Investigate user-reported phishing, malware infections, and potential policy violations; advise users and internal/external teams on containment and recovery actions.
Recommend updates to SOC playbooks and workflows based on real-world investigations, fine-tune detection rules. Alert thresholds, and correlation logic to reduce false positives and improve threat coverage.
Collaborate with engineering teams to ensure monitoring tools are properly configured and tuned. Integrate new threat intelligence feeds into workflows and proactively hunt for threats using up-to-date tactics, techniques, and procedures (TTPs)
Serve as a customer-facing SME, “selling” the value of the division’s services by demonstrating capabilities and resolving issues.
Document processes, runbooks, and troubleshooting steps related to SOC operations.
Coordinate with engineering, SOC, and agency staff as needed to meet goals.
Other duties as needed.

Required knowledge, skills, and abilities:

2+ years of experience with Security Monitoring and Incident Response.
2+ years of experience with MITRE ATT&CK framework.
2+ years of experience with dashboard creation and reporting.

Preferred:

Experience with the Palo Alto Cortex XSIAM/XDR platform.
Knowledge of Linux network administration and network design.
Experience in administration of firewalls, VPN technology, Active Directory, Intrusion Detection/Prevention systems.
Candidate is local to Columbia, SC or surrounding city in South Carolina.

Interested? Learn more:
Click the apply button to learn more about this position (#26-00528).

Authorized US Worker - US Citizens and those authorized to work in the US are encouraged to apply. We are unable to sponsor at this time. EOE/AA/V/D

DPP offers a range of compensation and benefits packages to our employees and their eligible dependents. Call today to learn more about working with DPP.

About the Company

DP Professionals

Resume Resources

Free Resume Templates Free Resume Builder