Security Engineer

Description :

Role Responsibilities

This is a hands-on, highly technical position within a fast-paced environment, reporting to the Director of Information Security at our technology center of excellence in Walnut Creek, CA.

We are building the Information Security Program, and you will have a great experience building a greenfield environment.

• The role requires three to four days in the office.
• Provide best-in-class enterprise subject-matter expertise across all Cybersecurity controls for on-premises Infrastructure and Azure Cloud.
• Responsible for maintaining operational excellence status on cybersecurity services related to administration, availability, diagrams, documentation, updates, and policy management.
• Investigate and analyze security alerts to determine scope, urgency, impact, and remediation.
• Manage cyber security incidents and conduct triage / forensic analyses and root cause analyses of cyber-attacks.
• Continually improve internal scanning, detection, and reporting of security risks and anomalous activity.
• Provide input for Key Performance Indicators (KPIs) and Metrics reporting.
• Identify opportunities to automate or streamline current processes.
• Participate in tabletop exercises.

Role Requirements

• Bachelor’s degree with advanced security certifications such as CISSP, Certified Cloud Security Professional (CCSP), SANS GIAC, Offensive Security, Azure Certified Security Associate (AZ-500), Microsoft Cybersecurity Architect (SC-100), Etc.
• Six years of experience in Information / Cyber Security.

Bonus Skills (one or more)

• Expertise with Azure Cloud Security and the Azure Well-Architected Framework.
• Experience with Rapid7 Insight IDR and Microsoft Sentinel other SIEM platforms to manage, create, and improve threat detection rules within the SIEM platform.
• Expertise in Beyond Trust PAM , other PAM solutions, and CrowdStrike Identify Exposure.
• Expertise with CrowdStrike or other EDR solutions, and CIS Operating System Hardening
• Expertise with Palo Alto Networks Prisma or other cloud native tools.
• Expertise in Tenable One Vulnerability Management or other VM Platforms.
• Expertise with On-premises Fortinet Fortigate or other NGFW technologies.
• Expertise with Incident Detection and Response.
• Expertise with Synk or other Application code scanning tools. Including, SAST / DAST.
• In-depth understanding of networking and network security and common enterprise communication technologies.
• In-depth knowledge of MITRE ATT&CK, CIS and NIST CSF Frameworks.
• In-depth experience with various cybersecurity techniques and principles, such as Security Operations Center and SIEM, forensics, threat hunting, penetration testing, and threat intelligence.
• Designing and orchestrating requirements for CI / CD pipelines in DEVSECOPS.
• Experience with threat modeling.
• Experience with Microsoft Purview and Data Privacy.
• Experience with drafting security policies, procedures, SOPs.
• Proficiency in secure coding / scripting and automation.
30+ days ago