The Security Engineer will understand a wide array of security processes and concepts. The Security Engineer will perform various duties such as SIEM ticket handling, IDS / IPS monitoring and analysis, analyzing network traffic, log analysis, and prioritizing and differentiating between potential intrusion attempts and false alarms.
This is a hands-on role that will create and follow detailed operational process and procedures to appropriately analyze, escalate, and assist in remediation of information security incidents.
This position involves working different shifts as part of a team providing 24 / 7 coverage.
You are great at :
Daily Operational work that includes security monitoring, working security tickets, security incident analysis, vulnerability scans, and other security tasks
Analyzing a variety of security logs to identify actionable events (SIEM reports-alerts-tickets, system, network, security monitoring tools)
Participating in the design, implementation, and administration of security tools to reduce risk
Responding to all manner of security incidents
Conducting security reviews, risk analysis, and controls reviews in adherence to security policy
Researching security advisories, e.g., CERT, and delivering appropriate course of action
Creating documentation to ensure all team members can perform required tasks
Analyzing data sets, identify gaps, and create reports on the findings
Following a set of procedures to adhere to standards and policies
Creating meaningful and detailed metrics based on security events or activities
Collecting evidence and artifacts to meet compliance requirements (ISO, SOX, HIPAA, SOC, etc.)
What it takes :
Familiarity with commonly used information security concepts, best practices, and standards
Good command of the English language, both written and spoken
Experience with SIEM tools and operations (LogRhythm preferred)
Excellent analytic, troubleshooting and problem solving
Resourceful and able to research problems and find information or documentation on related topics
Experience with vulnerability scanning tools
Experience with Anti-Virus and endpoint security solutions
Experience with Linux and Windows operating systems
Bachelor’s Degree in Information Systems or Systems Engineering or equivalent experience preferred.
2+ years in Information systems support, security engineering, or risk and governance
CISSP, CISA, CySA+ or other certifications preferred