Listing Description
At Oshkosh, we build, serve and protect people and communities around the world by designing and manufacturing some of the toughest specialty trucks and access equipment. We employ over 15,000 team members all united by a common purpose. Our engineering and product innovation help keep soldiers and firefighters safe, is critical in building and keeping communities clean and helps people do their jobs every day.
Oshkosh Corporation owns significant assets in the form of information. Some of these assets lose substantial value if they are improperly disclosed, and similar disclosure of other assets could result in significant harm to the organization. This role will support the Cybersecurity mission by working with the business as a trusted advisor to reduce cybersecurity risks to acceptable levels. Specifically, by acting as the organization’s mechanism to identify, maintain, and improve cybersecurity controls by using risk-based approach and creating effective education and awareness to preserve the confidentiality, integrity, and availability of company information.
YOUR IMPACT
These duties are not meant to be all-inclusive and other duties may be assigned.
- Primary focus is to support the technology used by the Cyber Defense team, participating in day-to-day operations, maintenance, upgrades, and lifecycle management activities
- Configure and troubleshoot event collection and forwarding on a variety of platforms
- Assist with new Infrastructure builds and deployment, upgrades, and patching
- Create vendor support cases and work with support through issue resolution
- Configure and maintain health monitoring and alerting of managed devices
- Respond to and remediate broken log source tickets in order of priority or as prescribed
- Assist with agent remediations, deployments, and troubleshooting
SKILLS AND EXPERTISE
- Bachelor’s degree in Information Systems or equivalent.
- Six (6) or more years of Information Security/Cybersecurity experience.
STANDOUT QUALIFICATIONS
- Two (2) or more years of direct hands-on experience managing and administrating a SIEM (Security Information and Even Management) tool (Qradar preferred).
- Direct experience supporting SentienlOne tools, ObserveIT, SuperCharger.
- Experience with windows endpoint troubleshooting.
- Demonstrated expertise in Regular Expression (REGEX) writing
- Experience with XML (Extensible Markup Language)
- Experience using REST API to collect vendor/cloud application logs
- Automation / PowerShell
- Experience managing logging at remote sites to a central location
Listing Details
- Salary: $130000 - $150000
- Citizenship: Us Citizen
- Incentives: Not Provided
- Education: Bachelors Degree
- Travel: No Travel
- Telework: Full Telecommute