Our professionals balance analytical skills, deep market insight and independence to deliver solid, defensible analysis and practical advice to our clients.
As an organization, we think globally. We create transparency in an opaque world, and we encourage our people to do the same.
That means when you take your place on our team, you’ll discover a supportive and collaborative work environment that empowers you to excel.
If you’re ready to share your perspective with the world, then you can make a real impact here. This is the Duff & Phelps difference.
Duff & Phelps’ Cyber Security practice helps firms manage cybersecurity risks at every stage of preparedness by identifying vulnerabilities and readiness through a comprehensive gap analysis and risk assessment;
implementing best practices to avoid compromise; and recovering from cybersecurity attacks.
At Duff & Phelps, your work will help protect, restore and maximize value for our clients. Join us and together we’ll maximize the value of your career.
Security Operations Analyst
We are seeking candidates for a 24 / 7 security operations team.Candidates will be responsible for monitoring security tools for potential malicious behaviors and providing incident response and escalation to the incident response team.
Use SIEM technologies and other native tools to perform the monitoring of security events on a 24x7 basis.
Perform analysis on logs produced by network devices utilized within the infrastructure such as firewalls, content filtering, syslog from various sources / devices, assorted Intrusion Detection capabilities, substantiating vulnerability scanner results, directory services, DHCP logs, Secure Email Gateway logs, and approved applications.
Use the SIEM to monitor the network and perform analysis, while integrating the results and information needed to proactively protect the enterprise.
This includes developing customized signatures, enterprise content filtering, or firewall ACL change recommendations.
Provide security events analysis and support to include identifying potential threat, anomalies, and infections, documenting findings, providing recommendations within the incident management system, performing triage of incoming security events, performing preliminary and secondary analysis of those events, and validating the events
Manage inbound requests via the ticketing system (Service Now), as well as via telephone calls, and provide security notifications via three methods : logging incident tickets, sending emails, and placing telephone calls.
Provide cybersecurity root-cause analysis in support of any tickets for which it fails to meet the Acceptable Quality Levels (AQLs) specified in the PRS.
This root-cause analysis will include documenting recommendations for corrective action.
Minimum of 2 years of experience in Cyber Security.
Bachelors of Science (Masters preferred) in Computer Science, Systems Engineering, Cybersecurity, Information Technology or related area.
Working level knowledge of policies, procedures, and protocols of a government Security Operations Center.
Experience using numerous security tools and technologies to include some of the following and / or closely comparable security technologies : McAfee Nitro SIEM, McAfee IDS / IPS, Imperva web application firewalls, McAfee Enterprise Antivirus, BlueCoat, Symantec DLP, Mandiant / Fireeye, Guardian MDB Protect, Cisco firewalls, QualysGuard, AppScan.
Preferred Certifications : Comptia Security+ Certified Ethical Hacker (CEH)
In order to be considered for a position at Duff & Phelps, you must formally apply via careers.duffandphelps.jobs
Duff & Phelps is committed to equal opportunity and diversity, and recruits people based on merit