Security Engineer

Watsonville, CA 95076

Posted: 09/10/2018 Industry: IT Operations Job Number: 8465 Pay Rate: Not Specified
Exciting opportunity for an experienced Sr. IT Security Engineer to join one of Santa Cruz County's most successful public companies. The Sr. IT Security Engineer is responsible for analyzing and correlating information collected from a variety of sources to identify, investigate, and report vulnerabilities in the environment. In addition, you would be responsible for assisting with resolution of identified security incidents and will coordinate with Granite infrastructure and application teams as required to achieve incident resolution.

Job Responsibilities:
* Conduct research, analysis, and correlation across a wide variety of source data to identify and prevent compromise of networks, host systems, and data.
* Analyze network traffic and host data to identify anomalous activity and potential threats.
* Establish alerting thresholds/triggers, analyze alerts from various sources within the enterprise, and determine possible causes and effects on systems and data.
* Validate intrusion detection system (IDS) alerts against network traffic and host data sources using to root out false positives.
* Perform regular and ad-hoc vulnerability and malware scans to identify unauthorized access to Granite data systems and malicious code activity such as trojans, root kits, backdoors, bots, or malware.
* Provide engineering support for security incidents and threats.
* Perform initial incident triage, determining scope, urgency, and potential impact of security incidents.
* Respond to and resolve identified security incidents, maintaining contact with end users and the help desk through resolution.
* Perform investigation/root cause analysis on known security vulnerabilities and recommend risk mitigation procedures.
Background Requirements: * 2-4 years hands-on experience developing Cybersecurity operating processes, playbooks, Tactics, Techniques and Procedures (TTPs) including first-line and incident response and reporting/notification thresholds, malware analysis and other checklists. * Experience with security incident response or SOC operational processes - manual and automated. * Knowledge of logging and aggregation tools (Splunk ,Sumo logic, etc) * Knowledge of vulnerability scanning tools (Qualys, Nessus, etc) * McAfee - TIE/DXL/MAR/ENS, VSE * Blue Team Methodologies * Perform security engineering for complex, multi-platform systems, datacenters, AWS and/or Azure cloud environments * In-depth experience in medium to complex computing environments, with advanced knowledge in security technologies and services * Must be a team player and be able to work as a team with your infrastructure, application and end-user systems partners to remediate vulnerabilities * Active Directory (AD) - Hybrid (Cloud & On Prem) Nice to Haves: * Pen testing experience to develop TTPs against adversary tactics (insider, external) * Security Certifications (Any of these): GCIH, CISSP, GISP, GSEC

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.