Senior Security Engineer

Summary

Join Hitachi Digital's Global Cyber Defense team as a Sr. Security Engineer and contribute to protecting vital information systems and data. Work in a 24x7 Security Operation Center (SOC) environment, handling technical escalations, performing root cause analysis, and managing SIEM environments. Responsibilities include creating SOPs, providing threat analysis, investigating security incidents, and mentoring other analysts. The ideal candidate possesses 5+ years of SOC experience, proficiency in incident management and response, and knowledge of cloud security and various operating systems. Security certifications are advantageous. Hitachi Digital offers industry-leading benefits, support, and services that promote holistic health and wellbeing, along with flexible work arrangements.

Requirements

• 5 years of experience in working in a 24x7 Security Operation Center (SOC) environment
• Proficient in Incident Management and Response, handling escalations, SIEM Alerts, EDR alerts, DLP, WAF alerts
• Knowledge of Cloud Infrastructure, and Cloud Security (GCP, AWS, Azure)
• Knowledge of MITRE ATT&Ck, Cyber Kill Chain, Threat Hunting & Attack Forensics
• Knowledge of various operating system flavors including but not limited to Windows, MacOS, Linux
• Communication and Teamwork: Strong ability to articulate complex concepts clearly, be a collaborative team player, admit mistakes, support your statements with data and analysis, and continuously seek growth opportunities
• English Speaking Skills Required (Intermediate or Higher)

Responsibilities

• Responsible for working in a 24x7 Security Operation Centre (SOC) environment
• Strong problem-solving and troubleshooting skills include performing root cause analysis for preventative investigation
• Handle technical escalations from the L1 SOC team and resolve them within SLA
• Create and manage the SOPs, runbooks and Asset inventory with risk classification
• Provide threat and vulnerability analysis as well as security advisory services
• Send and receive notifications to the SMEs about the vulnerabilities discovered along with remediation, and also follow up on the closure within SLA
• Administration of SIEM environment (eg: deployment of the solution, user management, managing the licenses, upgrades and patch deployment, addition or deletion of log sources, configuration management, writing parsing rules with Regex, change management, report management, managing backup and recovery etc)
• Investigation, Triage, remediate and find RCA of Compromised accounts, e-mail threats, and abuse reports from various sources
• Investigate, document, and report on information security issues and emerging trends
• Contribute significantly to the development and delivery of a variety of written and visual documents for diverse audiences
• Mentor, Guide and share information with other analysts and other teams
• Always be curious and keep growing your skills and capabilities and emerging trends

Preferred Qualifications

Certifications: Security certifications such as GSEC, CEH, CySA, are advantageous

Benefits

• Industry-leading benefits, support, and services that look after your holistic health and wellbeing
• Flexible arrangements that work for you (role and location dependent)