Apply Here!

Overview

We are looking for a seasoned engineer to build and maintain security solutions for the organization. This position will take part in the installation, configuration, tuning, and management of security systems across the organization's information systems. This includes Security Information and Event Management (SIEM) products, Breach Detection Systems, Network IPS/IDS, Host IDS, firewalls, and log capture. In this high impact role, you will be responsible for ensuring effective communications, detailed monitoring, traffic analysis, alert categorization, and assisting with and/or driving incident response cycles.

Responsibilities

  • Install, configure, tune, manage, and monitor security systems
  • Perform attack surface management activities, including vulnerability management and risk assessment
  • Quickly determine if there is a security incident and assure situational awareness for the company – Judgment, communication, and escalation are keys to the success of this individual
  • Investigate intrusion incidents, conduct forensic investigations, and lead incident response cycles
  • Generate metrics and reports on events, incidents, resolutions etc.
  • Collaborate with colleagues across the organization, including IT, Networking, and Infrastructure
  • Research and develop Standard Operating Procedures for the Security Operations Center (SOC) and enforce these procedures

Qualifications

Required:

  • U.S. Citizenship is required
  • Bachelor’s degree in technology, security, or a related field
  • 8 years of relevant experience
  • Knowledge of implementing and maintaining SIEM solutions, including but not limited to, correlation rule builds, content development, and automated notification set up
  • Incident Response and Forensics experience
  • Experience with top-tier Breach Detection / Automated Malware Analysis Systems
  • Heavy experience with Intrusion Detection Sensor configuration and deployment
  • Experience with Vulnerability Assessment and Management
  • Solid networking experience with technologies like routing, NAT, subnets, CIDR, bridging, and VLANs
  • Linux administration experience, preferably Ubuntu and CentOS, with expert knowledge of the Linux Command Line Interface
  • Windows administration and server hardening experience
  • Experience securing public / private cloud computing environments (AWS, OpenStack, VMware etc.)
  • Experience and examples of scripting and/or programming with Python, Ruby, Perl, PHP, C, etc.
  • Experience in SSO and MFA suites

Preferred:

  • Active Security Clearance is highly desired
  • Splunk Enterprise Security experience a big plus
  • Nessus Security Center experience a big plus
  • Penetration Testing experience is a bonus
  • Knowledge of Ansible and Docker a plus
  • NIST and CIS compliance experience is a plus

Apply Here!