|Date Posted||October 6, 2021|
Senior Cybersecurity Engineer
This position reports to the Director of Cyber Security – Threat Management & Incident Response. This position has a wide expanse of key relationships and must demonstrate strong leadership, relation management, and collaboration competencies. The Senior Cybersecurity Engineer is responsible for a broad range of duties, with a primary emphasis on conducting research and analysis on current threat activities as well as identifying and summarizing top industry cyber security trends as they apply to. This work will inform and assist the Vulnerability Management efforts within the company, which this position will manage. This position will identify, analyze, and report on employed threat Techniques, Tactics and Procedures (TTP) in order to provide security members with awareness and/or actionable information that allows for the development or implementation of proactive defensive measures and improved response actions.
This is a direct hire role that can be done 100 % remotely for a Charlotte metro NC client. The preferred salary range is $135,000 - $150,000. Candidates must be willing to be onsite after COVID restrictions are removed one week per quarter (paid travel) – Prefer candidate that are in EST or CST time zone due to EST work hours.
Main Duties/Required Skills:
Strong security consulting background and/or related experience.
Experience in applying security risk control frameworks (such as NIST Cyber Security Framework, COBiT, and ISO).
Previous experience in Cyber Threat intelligence or Vulnerability management and Information Security in a senior role
Ability to monitor and analyze logs and alerts from a variety of different technologies, including IDS/IPS, firewall, proxies, and anti-virus across multiple platforms with ability to develop specific expertise, discern patterns of complex threat actor behavior, and communicate an understanding of current and developing cyber threat.
Ability to leverage online research tools to identify and navigate online forums, specialized Web sites, social media, and traditional sources Ability to coordinate and respond to events on all of the monitored networks and the systems on those network Experience with collecting, analyzing, and interpreting qualitative and quantitative data from multiple sources for the purposes of documenting results and analyzing findings to provide advanced threat intelligence
Expert knowledge of security architectures, devices, proxies, and firewalls is required Expert knowledge of security architectures, devices, proxies, and firewalls is required. Proven ability to present findings and conclusions clearly and concisely to all levels of staff, management and/or vendor
Experience with Security Tools related to Enterprise Log Management, IPS/IDS, Antivirus, Firewalls, Proxies, DLP, Forensic Analysis and SIEM
Nice to have Skills:
· Effective planning, development, and execution capabilities
· Exposure to Cyber Threat Intelligence at the Strategic, Operational, and Tactical levels
· Ability to create and share IOCs, write YARA rules, and utilize STIX/TAXII for operationalization
· Highly effective communicator for multiple disciplines.
· Effective delivery of key metrics, and reporting.
· Accurate schedule estimates for program development, execution, and standard work.
· Effective coordination process