Identify Security on TwitterIdentify Security on FacebookIdentify Security on LinkedImIdentify Security Blog RSS Feed

Sr. Sensor Engineer (Security Event Management)

The candidate applies subject matter expertise of Incident Response and Event Management, service oriented architecture, with the ability to tune, configure and automate a variety of security related controls. Candidate is responsible for performing ongoing maintenance, to include ensuring devices comply with enterprise security policies.

Required Experience:

4

+ Years
Job Locations:

Dallas, TX

Location Restrictions:

Onsite

Basic Qualifications and

Serve as a technical lead for tasks, including enterprise security prevention, detection, and response capabilities. You’ll be conducting event detection, incident triage, incident handling, and remediation. Handle major high impact incidents, generate clear, concise recommendations, and coordinate activities and professional communications across a range of stakeholders. Work closely with other security teams to develop, tune, automate, and enhance network- and host-based security devices and support the incident response flyaway team with managing the response to client Cyber intrusions, including performing extensive network and host triage, maintaining strict chain-of-custody, developing documentation and reports, and performing remediation, as required.

Responsibilities
  • Experience with working in a professional services environment
  • Experience with performing host and network forensics analysis, including using timestamps across different log types to develop authoritative timelinesof activity to find evidence of malicious activity
  • Experience with setting up and using isolated machines or environments for malware denotation and indicator or compromised identification.
  • Experience in common scripting languages, including using PowerShell in the context of incident response and security operations.
  • Knowledge of the following security-related technologies: IDS/IPS, SIEM, Firewalls, log management, HIDS/NIDS, proxies, endpoint detection and response, and other enterprise-level appliances.
  • Possession of excellent oral and written communication skills, including adapting style and messaging to communicate with professionals at all levels effectively.
  • Knowledge of SSL/TLS traffic handling and encrypt/decrypt policies.
  • A strong attention to detail
  • Ability to interact with personnel at all levels across the organization and to comprehend business imperatives.

Required Skills and Experience
  • 3+ years of experience with incident management and response activities across the incident life cycle
  • Knowledge of the security tools and techniques used by Cybersecurity teams such as McAfee, Active Directory, Splunk, etc.
  • Ability to work independently and handle multiple tasks concurrently
  • Ability to think of technical obstacles and challenges in the broader business context.
  • Excellent communications skills (verbal and written) are required.
  • BA or BS Degree would be preferred, but not required.

Interested in this position?
Fill out the form below!