Report this Job
Network Security Analyst (Stealthwatch)
Location: Austin, TX
Interview: Phone + Skype
Job description: Responsibilities:
Managed CISCO Secure Network Analytics Service
The Managed Secure Network Analytics Service is a security service utilizing TxDOT-provided hardware enabling network visibility monitoring and alerting. Once network traffic reaches key network devices such as firewalls, routers, switches or specific devices designed to split network traffic such as a SPAN or TAP ports netflows can be generated and sent to Secure Network Analytics. This enables TxDOT to have better visibility of North-South traffic as well as East-West traffic. TxDOT can define its own security policies and tailor the Secure Network Analytics alerts to match expected or unexpected network traffic. The Managed Secure Network
Analytics Service supports the creation and monitoring of alerts, policies, and host groups. Additionally, the Managed Secure Network Analytics Service performs for TxDOT four critical activities:
Performance and Health Monitoring Ensuring that the monitored device is operating as expected (e.g., up/down status), system resource utilization (e.g., CPU, MEMORY) and environmental indicators (e.g., temperature, power) as available through the specific endpoint management tool.
Alert/Notifications Providing alerts or notifications to the designated TxDOT point of contact or group of any variance from the specified norms for performance or system health and security related alerts/notifications as defined by TxDOT's security policy.
Move/Add/Change/Delete (MACD) Perform changes to the configuration of the Secure Network Analytics management system, as directed by TxDOT.
Patch and update installation Ensure that the Secure Network Analytics system is up-to-date with the current software release (Version N) or current stable release (Version N-1)
Minimum (Required):
Years
Skills/Experience
8
Deployment and configuration of Network Security monitoring and incident response tools (EDR, Scanners, SIEM, Netflow, etc)
8
Administration of Network Security monitoring and incident response tools (EDR, Scanners, SIEM, Netflow, etc)
8
Participation and experience in intrusion detection and incident response activities
8
Effective, professional business communication and reporting
Preferred (Optional):
Years
Skills/Experience
8
Experience with the CISCO security suite of tools
Yogesh Sharma ("Believe you can and you're halfway there.")
Theodore Roosevelt Sr. IT Tech Recruiter
(Java, Security, Embedded, Network, Salesforce, DBA)
Phone: 2017789311 Email: Yogesh@(link removed) Vendor list
Stellent IT LLC