ARI helps companies around the world approach fleet management as an investment that drives business success. Headquartered in Mount Laurel, New Jersey, our people are united by the shared vision that fleet is much more than a collection of vehicles - it's a strategic asset for our clients. With nearly 2 million vehicles managed in North America, the UK and Europe, we help our customers build competitive advantage through business insight, data analysis, and the value of Holman Enterprises' collective automotive competencies.
The Holman Enterprises Security Operations team has an opportunity for a Senior Security Analyst. This position will have primary technical focus, leading the analysis of enterprise defenses during scoped and open-ended projects. This role is responsible for establishing a roadmap for the placement and use of security tools; as well as the implementation and monitoring.
* Participate in the administration of security implementations (EPP/EDR, IPS/IDS, SIEM, etc.)
* Support the ongoing administration, design and use of the Security Information & Event Monitoring platform, ensuring audit trails, system logs and other monitoring data is reviewed and actionable.
* Support the ongoing administration, design and user of network segmentation tools and underlying concepts.
* Perform vulnerability assessments and reviews; facilitating remediation planning, exposure tracking, communicating risk, and reporting on mitigation status
* Lead the development of security control assessments for common platforms and the implementation of findings from said assessments
* Facilitate Incident Response activities as a Subject Matter Expert through the Incident Response life-cycle
* Provides security architecture knowledge and design concepts to Information Technology and Development teams.
* Apply or recommend adaptive security measures based on investigative findings and threat monitoring
* Participate in and coordinates application security reviews, working with third party assessors and application owners to identify and remediate findings
* Performs second level investigation into user reported threats such as phishing, machine compromise, advanced threats, etc.
* Advise management on best practices, current trends, and pertinent changes in internal/external threats and opportunities for improvement. Presents action plans for implementation and approval
* Perform threat hunting based on Tactics, Techniques and Procedures (TTPs) and threat reporting from information sharing organizations (US-CERT, FS-ISAC, etc.)
* Provide technical expertise to support vendor and project reviews.
* Performs all other duties and special projects as assigned.
Preferred Technology Experience:
* Experience with network segmentation tools like Illumio, Guardicore, Zscaler ZWS, Cisco Tetration/ACI
* Significant Experience with SIEM technologies: Elasticsearch, Winlogbeat, Logstash, LogRhythm, Sigma
* Behavioral Endpoint Protection solutions: Cylance, SentinelOne, Crowdstrike
* Vulnerability Assessment services: Nexpose/InsightVM, Nessus, Qualys
* Network Detection Tools: Bro (Zeke), Suricata, Security Onion, etc.
* Firewall Technologies: Cisco ASA, Cisco Firepower, Palo Alto
* Familiar with any of Bash, Python, PowerShell
Relevant Work Experience:
Subscribe to job alerts and upload your resume!
*By registering with our site, you agree to our
Terms and Privacy Policy.