Job Description:
Job Id: N1927249
Job Title: Senior IT Security Analyst
Post Date: 03/25/2015
Company - Division: Qualcomm Technologies, Inc. - Government
Job Area: Information Technology
Location: California - San Diego
Job Function: QUALCOMM's Government Technologies (QGOV) division develops special products based on its wireless terrestrial and satellite communication technologies for the military, federal, local and foreign governments. QGOV also does specialized work for the US government based on QUALCOMM's core technologies.
**Applicants selected will be subject to a government security investigation and must meet eligibility requirements to obtain and maintain a Secret or Top Secret clearance **
This position will reside in a team that provides comprehensive information technology support to our government programs. An ideal candidate will be a self starter, customer service oriented, adaptable, great communicator, and have a desire to learn and implement information technology systems in various environments.
Responsibilities: Responsibilities
* Provide education to existing staff on the emerging trends of security operations methodology, information security concepts, security analysis and monitoring, incident response methodologies, and investigative tools and techniques
* Assist with the architecture and design of security controls, security monitoring and analysis technologies/processes, and cyber-response technologies/processes
* Manage issues resulting from investigation, work collaboratively with technical and business leads to follow up accordingly to security incident management procedures and processes, and assist in development and resolution of daily incident reports.
* Provide solid technical expertise to support Business Response Teams including the forensic analysis of network traffic, network packets and log files
* Work with business teams and intelligence team to continuously identify new/improved indicators of compromise specific and develop detection signatures for enterprise monitoring tools
* Handle events such as identifying user security issues, extensive troubleshooting, and coordinating resolution or restore using a variety of applications and testing tools. The events can include hardware/software failures as well as security breaches, threats, or network connectivity issues. Regularly provide high-level proactive technical support, including security configurations, security policy modification recommendation, and diagnostics of remote network security issues.
* Monitor daily security relevant events; investigate and respond
* Provide comprehensive, multi-disciplined IT support to QGOV's classified and unclassified networks
* Recommend solutions in accordance with USG/industry best practices
* Evaluate and implement new technologies
* Perform upgrades, new installations, enhancements, and configuration changes
* Develop and maintain thorough documentation
* Provide on-call and/or after hours support as needed
* Must be detail oriented to work in classified environment
* Must be able to interact with Engineering Leads and Engineers in meetings and individually to plan sustaining support
Basic Qualifications: ***** Active Secret/Top Secret clearance required*****
3-5 years of experience in the following areas:
* Enterprise IT environment
* Log collection / correlation / reporting / dashboards / alerting with ArcSight, Splunk, Tenable LCE, etc
* Continuous vulnerability assessment and remediation with (Retina, Nexpose, Nessus, etc )
* Programming/scripting experience (Python, C/C++, Java, Shell, Perl)
3-5 years experience in at least 3 of the following areas:
* Network and Host Intrusion Prevention, Detection and Remediation (Sourcefire, Snort, Cisco IPS, McAfee HIPS, etc)
* Network security monitoring, traffic analysis, packet capture
* Security event monitoring (SIEM, Splunk)
* Enterprise Firewall engineering (Palo Alto, Juniper, Cisco ASA, etc)
* Security automation using Puppet, Chef, scripting, etc
* Networking infrastructure (routers, switches) configuration, troubleshooting, and maintenance
* Network Access Control technologies (Cisco ISE, Forescout, etc)
* TCP/IP networking and routing protocols
* Implementing two-factor authentication (RSA SecureID, Entrust, Smartcard)
* Public Key Infrastructure (PKI) Standards and Policies
* PKI architecture and systems support
* Active Directory and Group Policy
* Windows/Linux/Unix operating system security
* VMWare ESXi/vCenter security and support
* USG security guidance
*** Relevant IT security certifications a plus****
Education Requirements: Bachelor's, Computer Engineering and/or Computer Networks & Systems and/or Computer Science and/or Information Technology
Preferred: Master's, Computer Engineering and/or Computer Networks & Systems and/or Computer Science and/or Information Technology or equivalent experience
*LI-SRC