CDC Engineer

$20000 - $25000 Year

Monday to Friday

Day shift

Health insurance
Paid time off
Employee discount
Dental insurance
Vision insurance
401(k)
401(k) matching
Flexible schedule
Parental Leave
Tuition reimbursement
Flexible spending account
Retirement plan
Others

What you will learn and contribute to

For this position you’ll be part of Group’s Security Cyber Defense Center (CDC) working as a Security Engineering Professional in the CDC Engineering team.

As part of our team, you will be specifying, implementing and maintaining the tools and systems required to support Cyber Defense Center (CDC) operations. Among others, the activities include the set-up, extension and maintenance of the Security Information and Event Management (SIEM) solution, the implementation and maintenance of the respective security alerting rules, keeping the logging infrastructure at scale and performant, maintain an effective Threat Intelligence platform and integrations, enable Security Orchestration, Automation and response (SOAR) with the respective automation playbooks, etc.

Above activities should be done in a cost effective and innovative way bringing value to the Business Groups / Central Functions & Digital Office teams through simplification, standardization and homogenization.

The Key accountabilities for this role include:

- Develop and maintain the tool and system configurations to have an effective set of Cyber Defense operations;

- Interact with internal delivery teams to create new integration and security monitoring/detection capabilities with Cyber Defense Center;

- Collaborate with the CDC SOC Analyst in implementing use cases that leverage existing tools to enable automation and improve security incident detections;

- Identify use cases that leverage existing tools to enable automation;

- Work to identify security integration strategies;

- Create reusable and efficient Automation Playbooks;

- Implement and deliver continuous improvement in the automation Playbooks for security indecent response and Security Compliancy verifications. This role also includes supporting the definition of requirements that enable new and innovative integrations with additional tools and systems;

- Master the security equipment’s, relevant tools and optimize the configurations;

- Train and mentor security operational teams;

- Partner with Security Operations and Architecture teams, Threat intelligence experts, CERT and other Digital Office and Business Group Stakeholders;

- Actively participate in the Security Community as a SME, presenting in forums, both online and at conferences.

- Research security enhancements and make recommendations to management;

- Stay up to date on information technology trends and security standards.

KEY SKILLS AND EXPERIENCE
Your skills and experience

You Must have:

· Education: Master’s degree in computer science or related technical field with strong background on software development. Cybersecurity, information assurance or information security specializations and certifications are a bonus.

· English proficiency

· Experience: Minimum of 2 years of relevant professional experience required in software development (DevOps) and/or working as SOC Engineering professional



Knowledge or experience on the domains listed hereunder are a key plus for the role:



· Good programing/scripting skills (knowledge of Python, PowerShell and KQL);

· Knowledge of Microsoft Azure, Azure Sentinel, Azure Log Analytics, AWS and GCP platforms

· Security Logging and Log Management

· Knowledge of ELK Stack

· Software Whitelisting Operations

· Vulnerability Scanning and Assessments

· Anti-malware and anti-spam (high touch point to executives and common attack vectors).

· Network Firewall and VPN

· DLP

· Proxy Management

· NIDS/NIDP

· HIPS

· Routing and LAN switching

· Server management (Wintel and UX)

· Monitoring, logging & security event correlation techniques

· Data analytics technologies & methodologies.

· Advanced reporting techniques (e.g. PowerBI)



It would be nice if you also have:

- Certified Ethical Hacker – EC Council (CEH)

- Certified Computer Forensics Examiner (Access Data, SANS)

- Certified Information Security Systems Professional (CISSP)

- Certified Cloud Security Professional (CCSP)

- Certified Information Systems Manager (CISM)

- Certified in Information Systems Risk Management (CRISC)

or the ability to work toward obtaining the above certifications.

Communication
Leadership
Teamwork
Interpersonal
Learning/adaptability
Self-management
Organizational
Computer
Problem solving
Open mindedness
Strong work ethic
technology
Others

2 years of relevant professional experience

Technology

On going position

Hybrid Remote