IT Security Specialist

Title: IT Security Specialist
Duration: 12+ months with possible extension/hire
Location: Pontiac, MI 48341 (Hybrid 3 Days Onsite)

Note: We're accepting candidates all over MI C2C and W2 both are accepted. Candidate must have MI DL to show on Video Call.
 

Summary: Under general direction, evaluates the adequacy and effectiveness of internal data controls, business and technical processes, and the performance of the organization’s technology platforms to ensure the integrity of the organizations systems and data. Performs security and integrity reviews of the organization’s data or IT systems.
 

Must Have minimum 2 years hands on experience in at least one (1) of the following areas: 
o SOC Analyst 
o Threat hunting 
o Detection engineering 
o Network Security engineering 
• Experience in client facing environments including active correspondence via email, instant message, voice/video calls with screen sharing.
• Minimum 2 years experience in active troubleshooting of technical systems including creation of documentation 
• Strong desire to learn, grow, and stay connected to the changing threat landscape.
 

Ability to discuss the fundamentals of information security in at least THREE (3) of the following areas: 
o Governance, Risk, and Compliance (GRC) 
o Cloud and hosted applications 
o Containerization 
o Application security 
o Network security and Zero Trust Architecture (ZTNA/NetSec) 
o Endpoint security and OS hardening 
o Security tooling and reporting automation (leveraging PowerShell/Python/Bash etc. to drive data into reports and dashboards) 
o Malware analysis/forensic system analysis 
o Incident response and remediation 
o Penetration testing of Apps, endpoints, or devices 
o Cyber Threat Intelligence (CTI) including automation of feeds and processing of incoming alerts/vulnerabilities 
o Vulnerability Management 
o Data Protection
 

Nice to Have:
• ISACA CRISC cert 
• ISC2 SSCP cert 
• Hands-on experience with SOAR and other automations.
• Hands-on experience using common AI models for automation, reporting, or research.
• Familiar with various NIST frameworks such as CSF 2.0, xxxxxxxxxxxxxxx, andxxxxxxxxxxxxxxx.
• Familiar with MITREATT&CK framework.
• Familiar with OWASP and web application penetration testing.
• Connections to the larger infosec community.

Best Regards,
Tarik Khanna

T a r i k . k h a n n a @ i n f o j i n i c o n s u l t i n g . c o m