User Activity Monitoring Analyst
: Job Details :


User Activity Monitoring Analyst

TAYS

Location: Baltimore,MD, USA

Date: 2024-12-03T07:42:38Z

Job Description:
Opportunity: TAYS is seeking an experienced User Activity Monitoring Analyst to join our dynamic team! The successful candidate will possess deep expertise in ForcePoint as well as User Access Monitoring and Data Loss Prevention. This role requires a strong understanding insider threat monitoring, the ability to identify, analyze, and report anomalies. This role will also be responsible for ensuring compliance with relevant security policies and regulations. This position is based in Woodlawn, MD, and requires an experienced multi-tasker with robust analytical, problem-solving, communication and people skills. *This is a Full-Time Remote Opportunity.*Primary Responsibilities:
  • Conduct data triage of anomalous events collected by approved User Access Monitoring (UAM), Data Loss Prevention (DLP) and other client network and endpoint monitoring tools. Elevate and investigate anomalous events of concern
  • Within the boundaries of agency policies, monitor all types of network activity using the agency provided UAM and User Behavior Analytics (UBA) tools to identify and report on viable response options ranging from administrative actions, security violations or infractions, and referrals to the OIS Insider Threat Team Lead
  • Provide the initial discovery and analysis of UAM alerts applying intelligence community analytic standards and critical thinking prior to submitting to the Insider Threat Project Lead for the purpose of determining the potential referral decisions/actions
  • Provide timely notification to designated personnel if a potential insider anomaly is detected. Draft comprehensive analytical and investigative reports and referrals that highlight activity or behavior that may be indicative of an insider threat/risk to SSA
  • Process Insider Threat UAM alerts and preserve the activity logs for potential future investigational viability and/or operational capability and ensuring the availability, compliance with data privacy and security regulations, while preserving the privacy and civil liberties of the SSA workforce
  • Perform after action reviews of past system alerts, to determine scope, urgency, and potential impact, identifying the specific vulnerability, and making recommendations that enable development of future remediation and mitigation efforts
  • Collaborate with and provide expert technical support to the agency Security Operations Center defense technicians to resolve insider threat incidents and provide recommendations to address and assist with resolution of any issues identified
Minimum Qualifications:
  • Bachelors Degree in a technical field or relevant work experience
  • 5+ years of relevant work experience
  • 2+ years of experience with Forcepoint
  • Experience with UAM, DLP and SIEM software
  • Ability to obtain and maintain a Public Trust clearance
Desired Qualifications:
  • Active Public Trust clearance
  • Prior SOC experience
  • Ability to obtain certifications in ForcePoint policy writing, extensive scripting experience, Network Analysis, Microsoft Desktop Administrator, or equivalent certifications
  • CompTIA Security+CE
  • CompTIA CySA+
  • CCNA Security
  • GICSP Certification
  • GSEC Certification
  • CND Certification
  • SSCP Certification
Please be aware that TAYS Inc. will never contact candidates via social media platforms, messaging apps (e.g., WhatsApp, Telegram), or public email services (e.g., Gmail, Yahoo). All official communication will come from our company email domain (e.g., @taysinc.com) and through our website. We will never ask for payment[ at any stage of the hiring process. If you suspect fraudulent activity, please report it to us immediately via ...@taysinc.com. About Company: At TAYS, every team member is vital. We recognize and celebrate diverse insights, believing they fuel our innovative spirit. We are not just tech-savvy; we are people-centric. you will have a voice. Your unique perspective will help us to solve complex problems, and we welcome your ideas. Here, you will collaborate closely with our clients, forging lasting relationships. We are on a quest for the brightest minds who relish technical challenges. If you are ready to contribute to our vibrant high-tech community, high touch let's uncover possibilities together! Why TAYS is the Perfect Place for You:
  • Flexibility: Enjoy a work-life harmony with our flexible working options
  • Hybrid Work: Most of our jobs allow for a Hybrid schedule with some even allowing full Remote
  • Benefits: Health, Dental, Vision, 401k
  • Time Off: 15 days of PTO to start, with 11 federal holidays and 2 floating holidays
  • Learning & Development: Tuition/Certification Reimbursement as well as LinkedIn Learning
  • Team Events: Quarterly gatherings for team bonding or community service
Commitment to Diversity: TAYS Inc. is an equal opportunity employer. We consider all qualified applicants for employment without regard to race, color, national origin, religion, creed, sex, sexual orientation, gender identity, marital status, parental status, veteran status, age, disability, or any other protected class.
Apply Now!

Similar Jobs (0)