Senior Operations Engineer, Information Security

Summary

Join Career Renew's client as a Senior Operations Engineer in Information Security! This remote role, based in the NY area, requires managing and maintaining a portfolio of security tools, including vulnerability management and automation. You will perform forensic recovery, event management, penetration testing, and threat hunting. This strategic role involves mentoring junior engineers and guiding other departments on security improvements. You'll also contribute to the architecture of new technology and policy deployments. The position demands extensive experience in IT security and specific toolsets.

Requirements

• Hold a Bachelor’s degree in a technical or engineering discipline; or have equivalent experience
• Have at least 6 years of technical experience in an IT-related field
• Have exposure to SIEM tools such as Splunk
• Possess knowledge of Data Loss Prevention systems and safeguarding sensitive data
• Have extensive systems and network engineering experience related to Windows, MacOS, and Linux/Unix OS’s
• Have extensive experience using the Kali Linux platform and toolsets
• Possess knowledge and experience with vulnerability management platforms such as Nexpose, Tenable, Qualys, etc
• Possess knowledge and experience with network security platforms including SIEM, firewalls, intrusion detection and prevention, web proxies and internet content filtering, and EDR/XDR
• Have knowledge of cryptography and encryption products, data loss prevention, and mobile device management
• Possess strong organization skills to prioritize work/life balance and lead complex projects
• Possess strong interpersonal skills and the ability to interact with various stakeholders
• Possess strong leadership skills to explain and guide peers on vulnerability remediation

Responsibilities

• Operate and maintain the InfoSec team’s portfolio of vulnerability management, automation, and other authentication tools
• Perform forensic recovery/support
• Manage events
• Investigate spam
• Respond to incidents
• Manage threat feeds
• Perform penetration testing
• Proactively defend against threats
• Manage security events
• Provide counsel and guidance to junior level security engineers
• Guide other departments in improving their security posture
• Provide information and planning for new technology and policy deployments
• Perform daily duties associated with the Security Operations team, extending services to campus and regional affiliates
• Implement and support the SIEM tool, including data sources and monitoring agents
• Implement and support the scanning platform, vulnerability attack platform, privileged account management solution, and other discovery tools
• Perform penetration testing on managed systems and generate remediation reports
• Implement and support the Security event management platform, including correlation and automation
• Implement and support web security platforms, threat prevention systems, and network sensors
• Review daily threat feeds, host alarms, and cloud-based reporting to mitigate threats
• Engage in threat hunting to identify undetected cyber threats
• Collect and disseminate vulnerability management reports and metrics
• Detonate malware in a test lab and interact with the EDR platform
• Perform password testing and cracking using tools like Ophcrack
• Configure and tune Data Loss Prevention rules for EDM
• Partner with Security Engineering, Risk Management, and SOC teams for development and automation tasks
• Partner with the Event and Incident Management team to produce actionable alarming for proactive incident management
• Develop test plans, test data, and testing schedules. Conduct unit and system tests
• Install and perform in-house and vendor updates according to IS change control standards
• Work in multiple phases of systems and applications analysis, considering business implications of technology

Preferred Qualifications

• Hold a CISSP certification
• Hold a CEH certification
• Hold an OSCP certification
• Have functional and practical experience with scripting and automation techniques

Benefits

Remote work