Systems/Application Security Analyst, Sr. jobs in San Jose, CA

Seeking a Sr. Information Security Analyst to lead staff in the implementation & execution of technical aspects of the client s enterprise security plan. Will act as the SME on security issues & projects so that ESEC team members can increase their security knowledge. Must have strong security incident response exp & exposure to forensic analysis either with a forensic tool (e.g. Encase or Forensic Tool Kit, etc.) or exp. with sandboxing.

Job type: Contract position
Duration: 12 months
Location: Pleasanton (onsite for the 1st week, onsite as needed onward)
Duties:
-Provide the highest quality services in the shortest timeframe possible with effective & efficient transfer knowledge to client s employees.
-A self-starter that can come up to speed in domain knowledge in a very short period.
-Proactively identify & assess threats to client users, network & data.
-Monitor & respond to reports of malicious activity. Respond & investigate intrusions & security events.
-Understanding of client threat landscape. Perform thorough analysis of attacks & anomalous network behavior.
-Provide summarized & detailed analysis & documentation in support of ESEC
-Perform proficient forensic analysis using security tools & processes. Identify actionable Intelligence by processing Threat Intelligence (TI).
Demonstrate ability to identify, contain, eradicate & recover from security incidents.
-Collaborate with client business units, partners & individuals to mitigate security threats.
-Advise the CISO & ESEC team on matters involving organizational, strategic, tactical & security best practices related to forensics & security incidents management. Attending meetings/represent ESEC as a Sr. lead for all security matters.
-Act as lead/co-lead/backup on assigned ESEC projects and mentor jr. staff colleagues.
-Create SOP & training documents and other duties, to be assigned as needed.

Experience:
-At least 10 yrs. of Enterprise Information Security exp.
-At 5 yrs. of technical exp. conducting security incident response.
-Exposure to forensic analysis using a forensic tool (e.g., Encase or Forensic Tool Kit, etc.) or exp. with sandboxing.
-At least 5 yrs. of Cyber Threat Intelligence exp. & making the information usable through the sec. incident process.
-Working exp. of applying IOCs to identify threats in current environment & apply information to prevent future vulnerabilities in the infrastructure tech security.
-Working exp. using best practices standards & frameworks: ISO 27001/27002; PCI DSS v4, GLBA; HIPPA/HITECH; NIST 800-53; CIS CONTROLS, NIST CSF; CIS RAM.
*CISSP and CCFP or equivalent certification desired (e.g., CCE, CHFI). Other highly desirable security certifications may be substituted for CISSP (e.g., CISA, CISM, etc.)

Tech. stack environment exp:
-Hardware: Network Switches, Routers, Load Balancers, Servers, Storage Systems, End-User Systems, Mobile Devices, or other devices that enable the organization to complete its mission.
-OS: UNIX, LINUX, WINDOWS. -Network: LAN WAN, Internet, Proxy/Filtering, Firewall, VPN, DMZ
-Network protocols: TCP/IP, SNMP, SMTP, NTP, DNS, LDAP, NFS, SAMBA, etc.
-DB s: Oracle, SQL, MySQL.
-Cloud Platforms: IAAS, PAAS, SAAS.
-Security concepts: Encryption, Hardening, etc.
-Security GRC.
-Forensic analysis tools.
-Active Directory
-Programming languages a plus.
-Computer forensics exp. a plus.
-Prior SIEM exp. a plus.
-Malware analysis skills a plus.