Sr. Cybersecurity Engineer
Description:
What you'll do
• Aid application teams seeking to consume threat intel into the appropriate tools and services
• Consistently work with CIR and Application team in an iterative fashion to ensure that all security logs are monitored, accounted for, and complete
• Tune alerts generated from all Cybersecurity tooling
• Work with the Cybersecurity Incident Response (CIR) groups to enforce process governance and ensure regulatory compliance
• Work with Security Analytical platforms, SOAR, SIEM, EDR, and other detection and incident response technologies.
• Develop a playbook and process automation utilizing the SOAR technologies
• Assist external teams in the proper configuration of security infrastructure that CIR relies on (IDS/IPS, Phish technologies, Firewalls, etc.)
• Aid external teams in ingestion of asset data into CIR systems
• Createsprocesses that allow non-security minded teams the ability to achieve regulatory compliance
Minimum Qualifications- Education & Prior Job Experience
• Bachelor's degree in Computer Science, Information Systems, Engineering, Technology, or related field or equivalent experience/training
• 3 years of scripting and automation experience
• 3 years of Information Technology Security related experience
• Available to travel
• Available to work a flexible schedule and support the incident response teams during triage
Preferred Qualifications- Education & Prior Job Experience
• 5+ years of Information Technology Security related experience
• 1 years of building and using APIs
• 2 years of networking experience
• 5+ years of Windows/Linux experience
• 2 years of data engineering experience
• Active Directory experience
• Information Security Certification
• Security+
• CISSP
Skills, Licenses & Certifications
• Ability to script in languages like Power Shell, Python, or JavaScript
• Knowledge of Linux/Unix, BASH/Power Shell, Basic Windows Administration
• Knowledge of basic security controls and architecture
• Knowledge of Networking concepts, services, and protocols
• Knowledge of SIEM, EDR, SOAR Platforms, Big Data Platforms
• Experience with Agile methodologies and tools
• A solid understanding of cyber security concepts, vulnerability identification and cyber threat intelligence
• Must be detail oriented, well organized, thrive in a sense-of-urgency environment, leverage best practices, and most importantly, innovate through any problem with a can-do attitude
• Aptitude in solving problems independently while also having the openness to work collaboratively
• Demonstrated problem-solving skills
• Ability to lead a small squad of engineers to deliver sustainable, scalable, and staff tolerant enterprise services
Additional Details
- Glider Assessment Required? : No
- Glider Assessment Name (If Applicable) (drop down) : N/A
- Does Contractor Need Their Own Laptop? : Yes
- Laptop Specs : 2.30 GHz+ CPU Windows 10 Pro or 11 Pro 15”+ display 32GB+ RAM 512GB – 1TB+ SSD
What this person will be doing: When the planes come back home, they offload a ton of data, so there’s lots of log files, events, etc for suspicious activities, behaviors. Some of it will be sent to 3rd parties. The rest will be sent to THIS PERSON to dissect & advise on next steps.
They’ll be looking for somebody who has done log file analysis, scripting, reporting. Past Airline work experience is a Plus.
Client: American Airlines
Contract Length: Long term contract, may convert to FTE at some point
Work Authorizations Allowed: US-born Citizens only
Required Test: LIVE CODING / PROBLEM SOLVING
Location: Ft. Worth, TX or Tulsa, OK