Senior Engineer - Security Operations

Qualifications

Desired Skills and Experience

• Preferably seven or more years’ experience in security operations and incident management, including DFIR

• Experience working in a 24x7 operational environment, with geographic disparity preferred.
• Experience with SIEM, EDR, XDR, SOAR, Threat Intel, Threat Intel Protection, Red Teaming and related Security technologies

• Familiarity with different Network. Web Application Firewall and identity and access management threat protection technologies
• Solid knowledge of regular expressions and automation workflows
• Understanding of data onboarding and ensuring appropriate time stamping and data parsing
• Experience working with information security disciplines (e.g., incident response, security infrastructure management, or monitoring services)
• Knowledge of cyber-attack stages, including reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation and covering tracks (Mitre, etc)

Additional Qualifications:

• Highly effective communicator with ability to influence business units.
• Analytical and problem-solving mindset.
• Leverages strategic and tactical thinking.
• Works calmly under pressure and with tight deadlines.
• Is highly trustworthy; leads by example.
• Security certifications preferred