Cybersecurity Engineer

at Liberty Mutual Insurance
Published September 17, 2023
Location Portsmouth, NH
Category Default  
Job Type Full-time  

Description

Schedule: Full-Time Salary Range: USD $113300.00 - $211900.00 Job Category: Technology Pay Philosophy The typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role. Description Principal Cybersecurity Engineer - ProActive Threat Hunting Team (PATH) The Principal Cybersecurity Engineer is an experienced role within the Liberty Mutual ProActive Threat Hunting Team, reporting to the Cyber Security Operations Center. This technical role is responsible for proactively and iteratively hunting for cyber threats. The successful candidate will have well rounded experience in some of the following security disciplines: Digital Forensics, Incident Response, Malware Analysis, Penetration Testing, and Threat Intelligence. About the job: Generate hypothesis to drive cyber threat hunting initiatives - leveraging threat intelligence, experience, creativity, and growing knowledge of the environment, to look for anomalies in logs and data sets. Identify and track threat actor Tactics, Techniques, and Procedures (TTPs) to conduct TTP-based hunting activity and gap remediation. Conduct triage activities as required based on hunt findings and tune out false positives to create high fidelity alerts. Emulate attack techniques in lab environment to conduct research on artifacts, as well as test/validate search queries and detections?fire? as expected. Investigate and report on cyber threat hunt findings, including recommendations to improve visibility and security posture across detective and preventive controls. Participate in Purple Team exercises to analyze and evaluate the effectiveness of existing security controls against identified TTPs. Coach and mentor junior team members to enhance and mature capabilities and team processes. Contribute to reporting on the team's operational metrics and KPIs. Serve as a Lead Responder on a global cybersecurity incident response team with a periodic on-call requirement. Desired skills: Bachelor's degree in Computer Science, Computer Engineering, Information Security, or other related discipline. Minimum 8+ years of recent experience working as a Cybersecurity Engineer. Subject matter expertise in at least one of the following areas: Cyber Threat Hunting, Malware Analysis & Reverse Engineering, Cyber Threat Intelligence, Digital Forensics & Incident Response. Previous experience working in a Cyber Security Operations Center or similar function is desirable. Knowledge of relevant frameworks, standards, and best practices such as NIST CSF, PCI-DSS, CIS CSCs, MITRE ATT&CK, Cyber Kill Chain etc. Experience with using a Security Information Event Management (SIEM) platform. Experience with using a scripting language such as Python or PowerShell for task automation or tool creation is desirable. Demonstrable knowledge of several of the following areas: cybersecurity concepts, network protocols, firewalls, IDS/IPS systems, email security, endpoint security, network security, Windows/Linux/macOS systems, cyber threat hunting, malware analysis tools and techniques, cyber threat intelligence, common threat actor TTPs, application security concepts, cloud security fundamentals, Incident Response methodologies. Excellent oral and written communication skills. Desirable Certifications: SANS/GIAC GCIH, GREM, GCFA, GCTI CompTIA Security+, CySA+ eCTHP OSCP Microsoft Azure or AWS Certifications Security Solutions/Tools Certifications Qualifications Bachelor`s or Master`s degree in technical discipline or equivalent experience, technical degree preferred Generally, 8+ years of professional experience Industry cybersecurity and/or technology certifications are preferred Security+ or comparable certification/experience is required (must obtain within 6 months if not possessed): SANS Certifications, ideally GCIH, GCFE, GREM, GCFA; CSSLP Certified Secure Software Lifecycle Professional; GSSPJAVA/ NET Secure Software Programmer Java; GWEB Certified web application defender; CASE Java/ NET Certified Application Security Engineer Java; CASS Certified Application Security Specialist Proficient in many and expert in some cybersecurity technologies, IT concepts, strategies, and methodologies, as well as security aspects of multiple platforms, operating systems, software, communications and network protocols Negotiation skills; oral and written communication skills Expert consultative skills, including the ability to understand and assist in applying customer requirements Leader within agile working environments to include both SCRUM and KANBAN Collaboration, prioritization, and adaptability skills required Advanced proficiency across architectural analysis, business analysis and financial disciplines, security and compliance, data integration and analytics, social networking, computational thinking, and mobile competency Expert proficiency in dimensional and lateral thinking, application delivery, system and technology integration, system software infrastructure, and workplace adaptability About Us At Liberty Mutual, our purpose is to help people embrace today and confidently pursue tomorrow. That's why we provide an environment focused on openness, inclusion, trust and respect. Here, you'll discover our expansive range of roles, and a workplace where we aim to help turn your passion into a rewarding profession. Liberty Mutual has proudly been recognized as a "Great Place to Work" by Great Place to Work US for the past several years. We were also selected as one of the "100 Best Places to Work in IT" on IDG's Insider Pro and Computerworld's 2020 list. For many years running, we have been named by Forbes as one of America's Best Employers for Women and one of America's Best Employers for New Graduates as well as one of America's Best Employers for Diversity. We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law. Employment Type: Full Time