Lenovo

Role: ITSO

Summary 

Extensive experience working with various security products and tools, including Tenable, Splunk, Nessus, and related technologies. The ITSO L2 Engineer will be responsible for managing and monitoring cybersecurity incidents, conducting security assessments, and ensuring compliance with cybersecurity policies and procedures in Command Center

Job Description

Cybersecurity Management

• Track and manage cybersecurity incidents and key security threat events. Report findings to the Agency as required.
• Track and disseminate security advisories, including threat reports, security directives, and patch recommendations to the Agency.
• Conduct information security awareness training for staff.
• Assist in or conduct tabletop exercises and security risk management activities.

Security Product Management

• Use Tenable and Nessus for vulnerability scanning and security assessments of applications, including client/server software and mobile apps, to be deployed in corporate networks.
• Utilize Splunk for security event monitoring and log analysis.
• Perform onboarding and vulnerability scanning of computing devices to ensure cyber hygiene before connecting to corporate networks.

Compliance and Reviews

• Ensure adherence to the customer’s ICT and cybersecurity incident response plan through ongoing security reviews and audits.
• Conduct security assessments of customer ICT systems, including log analysis.

Network and Security Integration

• Manage and configure security tools and platforms to ensure they are effectively integrated with the network infrastructure.
• Implement and maintain security policies and procedures to protect the organization’s IT assets.

Documentation and Reporting

• Maintain detailed and accurate documentation of security incidents, assessments, and policies.
• Prepare and deliver reports on security performance, incidents, and compliance.

Collaboration

• Work closely with other IT teams and external vendors to support and implement security solutions.
• Collaborate with the Agency to ensure alignment with cybersecurity objectives and requirements.

Qualifications & Experience:

• Education: Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience).
• Experience:
• 5+ years of experience in cybersecurity operations or a similar role.
• Hands-on experience with Tenable, Nessus, Splunk, and other security products.
• Experience with incident response, vulnerability management, and security monitoring.
• Certifications:
• CISSP, CISM, CISA, or any other professional cybersecurity certification
• Skills:
• Strong analytical and problem-solving skills.
• Familiarity with SIEM platforms and log analysis.
• Knowledge of network protocols, firewall configurations, and security policies.
• Experience conducting security risk assessments and audits.
• Experience in GCC Cloud