Cybersecurity Engineer
*Local to Richmond, VA only please
*This is a primarily remote position with monthly onsite meetings
Description:
- We are seeking an experienced Cybersecurity Engineer to support Security Products for Local Governments.
- The ideal candidate will possess in-depth knowledge of configuring and administering Security Tools and Products.
Responsibilities:
Administer and Maintain EDR Tools:
- Tune detection rules to reduce false positives and improve threat visibility for each covered locality.
- Ensure asset inventory is accurate and up to date for each covered locality.
- Regularly update the EDR platform and agents to the latest versions.
- Review and adjust security policies.
- Conduct health checks to ensure the EDR system is functioning properly.
- Investigate and remediate unexcepted agent behavior
- Ensure that Integrations are working as required and troubleshoot when issues are identified
Administer and Maintain Vulnerability Management System:
- Maintain and update the vulnerability management platform and agents
- Conduct health checks to ensure the VMS system is functioning properly.
- Tune scan policies to reduce false positives and improve accuracy for each covered locality
- Ensure asset inventory is accurate and up to date for each covered locality
- Configure and schedule scans for each covered locality.
- Investigate and remediate unexpected agent behavior
- Ensure that integrations are working as required and troubleshoot when issues are identified
General Support:
- Respond to and resolve customer inquiries and issues submitted through the ticketing system and SOC – Maintain and update the Remote Monitoring and Management platform and agents
- Accurately document customer interactions troubleshooting steps and resolutions
- Escalate complex or unresolved issues as needed
- Monitor ticket queues to ensure service level agreements SLAs are met and follow up with customers as needed
Desired Certifications:
- Security
- CrowdStrike Certified Falcon Administrator CCFA
- Tenable Certified
- Additional Cybersecurity Related Certifications
Required Skills/Knowledge/Experience:
- Administer and Maintain EDR Tools, Required 4 Years
- Administer and Maintain Vulnerability Management System, Required 4 Years
- Experience in information security, with a focus on security technologies., Required
- Excellent verbal and written communication skills; ability to convey complex security concepts in a clear and relatable manner., Required
- Ability to work independently and as part of a team., Highly desired
- Excellent organizational skills and attention to detail., Highly desired
- Relevant certifications preferred., Highly desired
Proper email communication will only be done to and from @astyra.com email addresses. Please ensure you are communicating with approved Astyra recruiters by checking this point when receiving offers and messages from us. Please ensure you are communicating within these guidelines and proper channels for the quickest possible interview consideration!
#AC