Cyber Security Engineer II - San Francisco, United States - TCWGlobal

Description

Cyber Security Engineer II

Fully Remote:
Open to Talent throughout the United States

$115k/$140kyr/$55-$67/hr

Temp to Perm

Traditional Office hours

Weekly Pay and Benefits

Our leading Biotech client is hiring a Cybersecurity Engineer II to join their strong and collaborative Cybersecurity operations team.

In this role, you will respond to and triage security incidents, monitor, analyze and respond to security alerts/events and conduct threat analysis.

You will take ownership and handle inbound reports of security vulnerabilities, engaging directly with various internal engineering, IT support, etc.

to drive issues to resolution.

The ideal candidate is an active leader and will have desire to be a leader in the vulnerability management program.

They will assist their IT peers in securing business applications, business software and services, and infrastructure. They will act as a security advisor in the design, construction, and implementation phases of complex systems and projects. Finally, they will assist their teammates in documenting Standard Operating procedures playbooks and secure standards.


Job Duties:
Monitor, analyze, and respond to security alerts/events and conduct threat analysis.

Actively participating in all facets of the incident response lifecycle.

Take ownership and handle inbound reports of security vulnerabilities, engaging directly with various internal engineering, IT support, etc. to drive issues to resolution.

Assist the senior engineers in supporting a range of security technology platforms, including, but not limited to, next-gen firewalls, WAF, SIEM, endpoint security and vulnerability scanners

Active participant in the vulnerability management program.

Assist your IT peers in securing business applications, business software and services, and infrastructure

Assist the senior engineers with the design, construction, and implementation phases of complex systems and projects

Participate in on call rotation


Requirements:
Minimum 3 years of experience in the information security space

Knowledge of endpoint and server operating systems (Windows, macOS, Linux) and relevant security risks, controls, and vulnerabilities.

Understanding of enterprise environments, specifically cloud-based & hybrid cloud environments.

Experience with cloud technologies such as AWS

Familiarity with enterprise security tools (antivirus, firewalls, email monitoring, two-factor authentication, SIEM, IDS/IPS, etc.).

Knowledge of security frameworks including such as MITRE ATT&CK, OWASP, & NIST.

Hands-on troubleshooting, analysis, and technical expertise to resolve incidents and/or service requests

Ability to analyze and solve complex problems and to work in a group setting as well as independently


Preferred skills:
Experience with security analysis and SIEM operations (e.g. Splunk, ELK, Panther)

Experience with scripting and automation tools.

Vulnerability Management experience

Experience collecting and analyzing security logs and related telemetry

Experience creating actionable content (rules, alerts, reports, etc) for a diverse range of commercial security tools and/or SIEM technologies

Strong working knowledge of Windows and Linux command-line tools, networking protocols, systems administration and security technologies

Experience programming in languages like Python and shell scripting for task automation and data manipulation.

Experience with DevSecOps, CI/CD, and associated technologies (e.g. Git, Terraform)

*Please apply even if you don't meet all of the "What you bring" requirements noted. It's rare that someone checks every single item, it's ok, we encourage you to apply anyways.

TCW Global is an equal opportunity employer. We do not discriminate based on age, ethnicity, gender, nationality, religious belief, or sexual orientation.

#LI-EM1