Senior Cyber Security Engineer
Employer Location Maple Grove, MN Start date Jun , 4 Closing date Jul , 4
View more
Category Job Type Employment Status You need to or to save a job.
Job Details
DRC is one of the largest educational assessment and curriculum / instruction companies in the industry.
Data Recognition Corporation
Senior Cyber Security Engineer
Maple Grove, MN
Company cannot provide sponsorship for this role
Please, no agencies
Summary :
This position is part of the Data Recognition Corporation (DRC) Information Security Team that has an important role in the defining and enabling the secure operation of the DRC environment.
The Senior Information Security Engineer will be responsible to design, architect, implement, and maintain the suite of security tooling that allows for detection and analysis of security events.
The successful candidate will have had experience in building and maintaining security tools in an application development-centric environment, with experience in both cloud and on-premise security management.
This position also assists with other aspects of the security practice, including application and cloud security, vulnerability management, identity and access management, security detection and incident response.
Responsibilities :
This position will lead a wide range of senior security functions, with the focus being on enhancing and maintaining the tools and processes around event logging and vulnerability management. Responsibilities include :
- Enhance and maintain SIEM solution, providing engineering support to capture relevant security log data from multiple sources, both on-premise and in the cloud
- Develop appropriate correlation queries to incorporate common threats, indicators of compromise (IOC's) and other relevant threat-feed data
- Implement and manage application security tooling including SAST, DAST, and SCA scanning components
- Develop incident response and remediation runbooks for common alert triggers
- Manage and enhance detection and response activities
- Perform dynamic and static application scanning and work with development teams to prioritize and remediate vulnerabilities
- Develop and enhance Data Loss Prevention (DLP) capabilities across the environment
- Lead vulnerability management efforts to identify, prioritize, and work with owners to remediate
- Implement and monitor cloud security risk mitigation strategies
- Support Identity and Access Management initiatives and provide security oversight on the IAM program
- Research new technologies, vulnerabilities and attack vectors to proactively drive security improvement across the organization.
Essential