Security Engineer, Cyber Security Operations Center - Bellevue, United States - VetJobs

Description

Job DescriptionATTENTION MILITARY AFFILIATED JOB SEEKERS

• Our organization works with partner companies to source qualified talent for their open roles.

The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers.

If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps.

ResponsibilitiesThe role of a Security Engineer is the detailed and repeatable execution of all operational tasks as documented in processes and subordinate procedures, specifically:

Monitor incoming event queues for potential security incidents per operational proceduresPerform triage, analysis, and response of security alerts to determine and initiate appropriate courses of action, with escalation as defined by established proceduresCollect and organize alert, event and triage data to produce reports to provide feedback to existing content, inform new content, and measure relevant KPIsProvide support for and collaboration with higher-tier support teams to investigate escalated incidentsAssist in the development of new security operations processes as well as the refinement or improvement of existing processesMonitor CSOC ticket (or email) queue for potential event reporting from outside entities and individual usersMaintain CSOC shift logs with relevant activity from current shift.

Document investigation case notes, ensuring relevant details are passed to CIRT for escalated incident analysisUpdate or reference CSOC knowledge management repository as necessary for changes to CSOC processes and procedures and ingest CSOC daily intelligence reports and previous shift pass downsConduct security research and intelligence gathering on emerging threats and exploits QualificationsMinimum Required2-4 years of experience working in a large enterprise2-4 years of experience as a SOC or Incident Response investigator or equivalent work experienceConversant with cyber security intrusion analysis concepts and techniquesUnderstanding of security incident investigation and log analysisExperience investigating security incidents, threats and vulnerabilitiesDemonstrable knowledge of networking (TCP/IP, topology, OSI model and network forensics), operating systems (Windows/MacOS/Linux), and web technologies (web applications, database security, web servers)

Knowledge of federal & compliance regulations e.g.

SOX, PCI & CPNIKnowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)Ability to read and understand system data, including, but not limited to, security event logs, system logs, and firewall logsHigh degree of attention to detailPresentation skills to large and small audiencesStrong verbal and written communication skillsDesiredExperience supporting Cyber Security Operations in a large enterprise environmentExperience with SIEM & Log Management solutionsExperience with cloud security, telecom security, data protectionExperience with enterprise systems or network administrationCCNA Security, GCIA, GCIH or other related security certificationsMinimum Required EducationDegree in Computer Science, Information Technology, or equivalent work experienceIn lieu of a degree, 6+ years of related experience may be consideredCourse work in Cyber Security is strongly preferredGeneral/Physical RequirementsMust sit for extended periods of time.

Extensive computer and telephone utilization.
Shift work in a 24x7 Cyber Security Operations CenterParticipation in on-call rotation may be requiredAt least 18 years of ageLegally authorized to work in the United StatesWashington Pay Range :
$103, $140,500.00