Security Onion Consultant

ICONMA in Atlanta, GA

  • Industry: Defense/Security Clearance - Others
  • Type: Full Time
  • $54,460.00 - 118,130.00
position filled

Security Onion Consultant

Location: Atlanta, GA
Duration: 6 months with possible contract to hire

  • EIS Security Operations - Program Manager Security Onion. A Bachelor's Degree is Preferred.
Business Initiative/Purpose:
  • The "Program Manager ? Security Onion? is a thought leader responsible for providing technical leadership and direction for an enterprise-scale deployment of Security Onion, open source cybersecurity solutions, and other high-profile projects and inititiatives.
  • This role will drive the maturation of Security Onion and other open source technologies in support of 24/7 monitoring, incident response, threat hunting, automation, and other functions in the Cybersecurity Operations organization. The role will develop, promote, and build consensus executing on the vision, future state roadmaps, and an innovation practice responsible for adoption of new and emerging technologies.
This Program Manager will be responsible for developing high quality deliverables and weekly technical updates to leadership while ensuring managers and their associated teams are aligned to best practices observed in other large organizations. Deep technical knowledge paired with a high-degree of business acumen, change agility, political savvy, listening, and negotiation skills are an ideal fit for the position.
The Program Manager falls within one of the most exciting and dynamic organizations within the bank with the mission of monitoring and responding to advanced cyber-attacks. We encourage anyone interested to apply, this role is connected to several other cyber roles that you might be qualified for and interested in!
Initial/Primary Project Names:
- Security Onion Technical Leadership
- Threat Hunting and Advanced Analytics
- Automation and Orchestration Design
Project Team Size/Makeup:
This position will report directly to the Head of DFIR (Sam Mammen), but will have a dotted line to the Head of CSOC (Jessica Maney). However, many tasks and technical direction may come from the various leaders within cyberescurity operations.
Must Have- Skills :
- One (1) or more years' working experience in a technology environment with exposure to information security principles.
- Extensive working knowledge of common IT and security concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques, cyber incident response, malware analysis, computer forensics and the tools that support these processes.
- Extensive working knowledge in multiple areas of Digital Forensics & Incident Response (DFIR), including skills in log, network, endpoint, memory, malware, and root cause analysis.
- Display a working knowledge of at least one the following technologies: SIEM, EndPoint Detection & Response tools, and Digital forensic suites.
- Ability to solve complex problems by applying best practices. Demonstrated proficiency utilizing security platforms related to logging, event correlation, incident management, vulnerability management, and/or computer forensics.
- Demonstrated teamwork and collaboration skills.
- Strong time management skills and ability to manage competing priorities effectively.
- Highly effective verbal and written communication skills for the purpose of providing extensive information about event timelines, technical designs, system concepts and business impact to audiences at all levels within the organization.
- Highly effective verbal and written communication skills for the purpose of providing extensive information about event timelines, technical designs, system concepts and business impact to audiences at all levels within the organization.
- Support a variety of tasks in support of the larger Cybersecurity Mission
- Demonstrate the ability to work as a self-starter and acquire new skills quickly
- Exemplify the characteristics of a great team player and overall positive mindset
- Ability to support an on-call and regular shift within a 24/7 operations environment.
- Ability to obtain requisite technical certification(s) within six months of hire.
Plus/Nice To Have - Skills:
- Five (5) or more years of cybersecurity experience in a technical role
- A bachelor's degree in Information Security, Information Technology, Computer Science, Engineering, or similar field.
- Experience leading incidents as the primary technical voice
- Experience working with DDoS attacks and other network-based attack types
- Extensive working knowledge of Digital Forensics & Incident Response (DFIR) skills, including log, network, endpoint, memory, malware, reverse engineering, and root cause analysis.
- Although, not required, a background in software development and/or scripting is highly desirable.
- Three or more of the following (or similar) certifications: Security+, Network+, CySA+, GSEC, CEH, CHFI, GCIA, GCIH, GCFE, GCFA, GCED, GREM, OSCP.
Drive the success of the security onion deployment into one that's on the bleeding edge of security monitoring and automation.
Lead the security onion working group to ensure all activities fit best practices
Provide the organization with an in-house consultant to build deliverables related to highly technical, high profile initiatives
Serve as a distinguished analyst for designing and building solutions to address some of the most difficult problems within the organization.
Build alliances within the bank to work quickly through processes that are established and responsibly executing in areas where documented process don't exist.
Additional Job Details:
Absolute requirement:
- Candidates who have worked with Security Onion in an enterprise setting
Things to look for:
- A true technical expert and visionary, this should show up as the highest graded position I've ever submitted.
- Senior Architects, Principal Engineers/Analysts, etc.
- Any kind of cyber operations background
- Multiple technical certifications
Call Notes:
- Supporting security onion and the security onion deployment but someone who can also slide into a Cyber Security Incident Response role.
- Want this person to give technical leadership and deployment.
- Really wants the Security Onion experience but realizes this is not an easy find and he would be open to looking at someone if they are super technical, have incident response and Cyber security experience.
- Cisco IDS, Deploying new alerts or detections and architecture background are other types of experience we could look for on this role.

As an equal opportunity employer, ICONMA prides itself on creating an employment environment that supports and encourages the abilities of all persons regardless of race, color, gender, age, sexual orientation, citizenship, or disability.

You may be interested in these similar jobs!
Advisory Senior Consultant - Cybersecurity - Security Monitoring
EY in Atlanta, GA

Senior Security Consultant jobs in Atlanta, GA 30309edit Advisory Senior Consultant - Cybersecurity - Security Monitoring

Read More
Automotive Cyber Security Consultant
Orion Business Innovations Careers in Peachtree City, GA

Vehicle/ Automotive Cyber Security ConsultantLocation: Peachtree City, GAExpected Duration: 6 Months to Long TermSkills Required:Security: BootMicro …

Read More
C07T07L023JGRC-19150-5195 : SAP GRC Consultant / SAP Security Consultant
VDART in Atlanta, GA

We are a Global Information Technology Services & Workforce Solutions firm headquartered out of Atlanta, GA with presence in US, Canada, MX, UK, Belg…

Read More
Cyber Risk Application Security Senior Consultant
Deloitte in Atlanta, GA

**Cyber Risk Application Security Engineer Senior Consultant** Are you interested in working in a dynamic environment that offers opportunities for …

Read More
SAP ABAP Consultant
Synkriom in Atlanta, GA

skills SAP ABAP HCM, FIORI Enterprise Portal Technology (ESS/MSS), SAP Net Weaver Portal, NWDI, WebDynpro, SAP UI5 and ODATA Services, SAP Security e…

Read More
Cybersecurity Strategy, Governance and Risk consultant
Iconma, L.L.C. in Atlanta, GA

Cybersecurity Strategy, Governance and Risk consultantLocation: Atlanta, GADuration: 9-10 months With Possible Contract to HireDescription:Business I…

Read More
Senior Security Consultant
infoLock in Atlanta, GA

You are a data security enthusiast with exposure to multiple fields such as data encryption, PKI technology, two-factor/multi-factor authentication, …

Read More
Oracle Fusion Consultant
AEG Resource Consulting in Alpharetta, GA

?Long term contract position for our client.? Location is somewhat flexible for the right candidate.Oracle Fusion Apps,?Oracle Cloud and Oracle EBS e…

Read More
Senior IT Security / Risk Compliance Consultant
Jack Henry in Alpharetta, GA

Job DescriptionAre you interested in joining a fast-paced team providing IT regulatory compliance (ITRC) practitioner services as a Senior Risk Compl…

Read More
Cyber Risk Secure Software Enablement Consultant
Deloitte in Atlanta, GA

**Consultant, Secure Software Enablement** For cyber professionals looking to pursue meaningful work while applying their vast skills and experience…

Read More