Security Engineer - Breach & Attack Simulation (TS/SCI CI Poly)

Summary

Join GuidePoint Security, a rapidly growing value-added reseller that focuses exclusively on Information Security, as a Security Engineer to drive complex security deployments and solve customers' unique problems.

Requirements

• 3+ years of security systems engineering and troubleshooting experience
• Must have an understanding of cyber-based threat techniques and procedures to compare industry related events, exposures, and incidents with open source and gathered intelligence research to determine threat capability and intent, and the potential impact of the threat on customer network architecture and operations
• Understanding of the MITRE ATT&CK Framework and/or other cyber security threat based frameworks used to track adversaries and associated TTPs
• Proficiency developing log ingestion and aggregation strategies
• Familiarity with key security events on common IT platforms
• Proficiency in client and server operating systems including Windows, Mac, and Linux
• General networking, host, and security based troubleshooting (firewalls, routing, NAT, etc.)
• Ability to autonomously prioritize and successfully deliver across a portfolio of projects
• Must possess an active DoD 8570-compliant cyber certification at IAT Level II or better (CompTIA Security+, CEH, etc)
• An active TS/SCI clearance with an active polygraph

Responsibilities

• Complete internal training program for Mandiant Security Validation (MSV)
• Drive complex security focused deployments of MSV while working side by side with the customers to solve their unique problems across a variety of use cases
• Work with our customers to understand their security posture and requirements
• Support our security deployments by unlocking the potential of MSV to assist our customers in achieving their Cyber Security strategy
• Collaborate across the entire organization to bring access to product and technical teams to get the right solution delivered and drive innovation gathered from customer input
• Leverage previous experiences, share best practices and create innovative solutions to push user adoption and maximize the value of MSV
• Enable customers to solve the next wave of questions on their own

Preferred Qualifications

• Familiar with configuration and administration of enterprise SIEM tools
• SIEM and/or network/host based detection engineering experience
• Working Knowledge of Operating System Auditing (both Syslog and Window Event Log) preferred
• Experience working with Mandiant Security Validation, or other breach and attack simulation (BAS) solutions
• Red/Purple teaming experience
• Scripting and development skills (BASH, Perl, Python or Java) with strong knowledge of regular expressions
• Experience developing SOC runbooks/workflows, policy, and best practice documentation

Benefits

• 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
• 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option