$40000 - $45000 Year
Monday to Friday
Day shift
Health insurance
Paid time off
Employee discount
Dental insurance
Vision insurance
401(k)
401(k) matching
Flexible schedule
Parental Leave
Tuition reimbursement
Flexible spending account
Retirement plan
Others
The Key accountabilities for this role include:
Develop and maintain the tool and system configurations to have an effective set of Cyber Defense operations;
Interact with internal delivery teams to create new integration and security monitoring/detection capabilities with Cyber Defense Center;
Collaborate with the CDC SOC Analyst in implementing use cases that leverage existing tools to enable automation and improve security incident detections;
Identify use cases that leverage existing tools to enable automation;
Work to identify security integration strategies;
Create reusable and efficient Automation Playbooks;
Implement and deliver continuous improvement in the automation Playbooks for security indecent response and Security Compliancy verifications. This role also includes supporting the definition of requirements that enable new and innovative integrations with additional tools and systems;
Master the security equipment’s, relevant tools and optimize the configurations;
Train and mentor security operational teams;
Partner with Security Operations and Architecture teams, Threat intelligence experts, CERT and other Digital Office and Business Group Stakeholders;
Actively participate in the Security Community as a SME, presenting in forums, both online and at conferences.
Research security enhancements and make recommendations to management;
Stay up to date on information technology trends and security standards.
KEY SKILLS AND EXPERIENCE
You Must have:
Education: Master’s degree in computer science or related technical field with strong background In software development. Cybersecurity, information assurance or information security specializations and certifications are a bonus.
English proficiency
Experience: Minimum of 2 years of relevant professional experience required in software development (DevOps) and/or working as SOC Engineering professional
Good programing/scripting skills (knowledge of Python, PowerShell and KQL);
Knowledge or experience on the domains listed hereunder are a key plus for the role:
Knowledge of Microsoft Azure, Azure Sentinel, Azure Log Analytics, AWS and GCP platforms
ADX, EventHub
Security Logging and Log Management
Logstash software in depth knowledge, optimization, best practices
Logstash filtering optimization
Knowledge about Azure Private Endpoint and Private DNS Zones
Kubernetes deployment and maintainability knowledge (HPA with external indicators)
Monitoring, logging & security event correlation techniques
Network Firewall and VPN
DLP
Proxy Management
NIDS/NIDP
HIPS
Routing and LAN switching
Server management (Wintel and UX)
Experience in using scripting languages (e.g. Python, Bash)
It would be nice if you also have:
Certified Ethical Hacker – EC Council (CEH)
Certified Computer Forensics Examiner (Access Data, SANS)
Certified Information Security Systems Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Certified Information Systems Manager (CISM)
Certified in Information Systems Risk Management (CRISC)
or the ability to work toward obtaining the above certifications.
Communication
Leadership
Teamwork
Interpersonal
Learning/adaptability
Self-management
Organizational
Computer
Problem solving
Open mindedness
Strong work ethic
technology
Others
2 years of relevant professional experience
Technology
On going position
In-person