In this position you will be an integral part of the enterprise Information Security Program. Your focus will be on systems security and automation for our growing Information Security team.
Primary day-to-day responsibilities will include engineering various security tools, integration, automation, and supporting the SOC team with tool development and incident escalations.
As a Senior Security Engineer, you will be involved in critical security projects and day-to-day duties of the information security team as we continue to grow.
Design and build security tools and processes for integration and deployment across theenterprise.
Develop and support integration and automation within security, monitoring, reporting,and ticketing platforms.
Build and maintain SIEM content for detecting and responding to security events andincidents.
Design, implement and support cloud based security solutions for both public and privatecloud infrastructures.
Research and development of modern / next-gen security toolsets to augment existingcontrols.
Design and implement threat intelligence and threat hunting capabilities within thesecurity team.
Build hardened configuration requirements for all technology and work with multipleteams to help implement suggested solutions.
Review and analyze existing processes and suggest improvements for increasedsecurity including assisting the Risk Management team with assessments.
Conduct security research to keep abreast of latest security issues and helpcommunicate and respond internally to mitigate any identified vulnerabilities.
nvestigate security incidents using SIEM and other Information Security tools includingIDS, packet captures, reports, data visualization, and pattern analysis.
Support Information Security team in all areas of information security.
Bachelors of Science in CIS / MIS / CS / CE, Engineering / Technology or related field or equivalent experience / training.
6-8 years working within Information Technology and 4-6 years specifically inInformation Security.
Proficient in one or more scripting languages (Python, Powershell, etc).
Must be well organized, thrive in a sense-of-urgency environment, leverage bestpractices, and most importantly, innovate through any problem with a can-do attitude.
Must have understanding of various systems technologies, architecture fundamentals,next-generation technology and very strong security understanding.
Demonstrated oral / written communications, and client facing skills.
Experience in deploying and maintaining security controls within various public cloud environments (AWS, Azure, Google).
Experience with Splunk and Splunk ES, Next Gen Firewalls and IPS, and otheradvanced security tools.
Experience working vulnerability scanning tools and implementing a vulnerabilitymanagement program.
Experience performing internal security architecture and engineering relatedassessments / reviews.
CISSP, GSEC, GPEN, GCIA, GCIH or similar security professional certification.