Security Engineer II - Cyber Security Operations Center

At Jabil we strive to make ANYTHING POSSIBLE and EVERYTHING BETTER. We are proud to be a trusted partner for the world's top brands, offering comprehensive engineering, manufacturing, and supply chain solutions. With over 50 years of experience across industries and a vast network of over 100 sites worldwide, Jabil combines global reach with local expertise to deliver both scalable and customized solutions. Our commitment extends beyond business success as we strive to build sustainable processes that minimize environmental impact and foster vibrant and diverse communities around the globe.

Cyber Security Operations Center Engineer II

JOB SUMMARY

• Participate in a 24/7 global operation that manages and responds to security events on Jabil's networks.

• Perform investigations on a wide variety of events from various sources to determine whether they pose a threat to Jabil.

• Participate in large-scale security incidents.

• Responsible for security services, technologies, programs, and processes as assigned.

• Interface with architects, IT groups, and other entities to ensure that security is evaluated and embraced in Jabil.

• Lead activities to determine the security landscape, threats and vulnerabilities, appropriate security tools, processes, policies and opportunities to mitigate risk to Jabil.

• Ensure compliance to Jabil's security policies.

• Optimize security tools and perform complex tuning and filtering of devices.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Includes the following but are not limited to:

• Maintain discretion and confidentiality in all areas pertaining to Jabil's information assets, data and proprietary information, whether internal to Jabil or customer specific

• Demonstrate a commitment to customer service; anticipate, meet and exceed expectations by solving problems quickly and effectively, making customer issues a priority

• Continuously look for improvement opportunities in each area of Jabil's information security program

• Create reports for assigned areas of responsibility

• Exchange knowledge and information with other Jabil facilities to ensure best practices are shared throughout the Jabil organization

• Perform mentoring and education for security staff members

• Understand and embrace the business and IT strategic direction

• Train and educate Site Security Coordinators on their role and security requirements

• Manage Security Programs in assigned area

• Consult with various entities to recommend security solutions and designs

• Assure that procedures and work instructions are efficient and not redundant

• Lead external and internal third-party audit activities. Participate in customer and group audits as required

• Identify required metrics, goals, formulas, reporting processes, etc

• Lead or assist security team efforts for IT Security, compliance or customer audit activities

• Identify and implement new practices and processes that are "best in field"

• Lead efforts to create and implement security standards, policies, guidelines, and practices

• Own assigned processes and ensure process requirements are being met and that the process continues to be improved

• Lead Global or Regional merger, greenfield, and acquisition security activities and ensure all requirements are met, processes established, and training performed

• Lead security activities when reducing or shutting down existing facilities to ensure all security requirements are fulfilled

• Identify Potential Threats and vulnerabilities and lead the mitigation of identified threats

• Identify Security patches and vulnerabilities to be evaluated for impact and risk to Jabil

• Lead the deviation process for assigned area and ensure the deviation process is understood and followed

• Lead Incident Response Process as required. Lead efforts to investigate and remediate security incidents and prepare and complete required Security reports associated with the Incident Response Process

• Ensure business requirements are met for contracts and licensing, forecast, service level agreement, and associated policies for assigned service

• Understand the Security service's technology and its capabilities. Determine downtime requirements, upgrades, etc

• Lead strategic Security service Ownership activities to help set direction and establish patterns of continuous improvements

• Ensure that the Security service meets all intended regulatory and compliance requirements

• Assist with Security Deviation Audits

• Approve recommended or requested policy changes to tool configurations

• Stay abreast of new tools and approaches in the security arena and meet with vendors or service providers as required

• Determine which tools should be evaluated and lead tool or service evaluation

• Lead activities that help determine Jabil's security architecture and ensure that selected solutions meet all required business and compliance requirements

• Consult with architects and other groups to ensure that solutions entering Jabil meet security requirements and also ensure that security solutions satisfy architecture requirements

• Lead investigation and forensic efforts in sensitive and complex investigations and circumstances

• Make judgments on whether security events are incidents and initiate Incident Response process when necessary

• Perform advanced security incident investigation and event correlation analysis in sensitive and complex investigations and circumstances

• Handle Escalation from Security Analysts and Security Engineers

• Analyze security violation reports for suspicious and dangerous activity

• Prepare summary reports for distribution to management

• Submit tickets to the Service Desk describing security incidents with supporting information or evidence

• Determine requirements for environment analysis such as: port scanning, vulnerability assessment tools, which tools are prohibited, etc

• Ensure proactive steps are taken for any potential Security Tool problems such as: performance degradation, reliability/availability and security issues

• Approve security device tuning and filtering requests and ensure no negative impact to Jabil's enterprise

Minimum Qualifications:

• Bachelor's degree in Computer Science or Management of Information Systems; or 8 years or more equivalent external work experience; or equivalent formal training in related duties.

• Significant experience and understanding in two or more of the following areas: Security technologies and tools, Forensic investigation and incident response tools and processes, IT technologies and tools (Networking, Systems, Applications, Databases, etc.), Security services or program management.

• Global experience and working with different cultures are required.

• One or more of the following, or similar certifications: CEH, CCNA, MCSE, CISSP, GIAC, CISM, or security tool certification.

• Significant interpersonal and leadership skills to influence and build credibility as a peer

• Possess a demonstrated sense of urgency with the ability to perform well under significant enterprise-wide pressure

• Excellent communication and presentation skills with demonstrated skill in presenting analytical data effectively to varied (including executive) audiences

• Previous experience in Python, PowerShell and other common languages used in SOC IR Platforms.

• Previous experience with Splunk SPL, SOAR, and UBA platforms.

• Must be willing to work in an active 24x7 SOC environment

Preferred Qualifications:

• Master's degree in discipline directly related to information security, cyber, or computer network defense or digital forensics.

• Relevant security related certifications a plus: CISSP, GCIA, GSEC, GCIH, GCED, GCFA, GREM

• Proven subject matter expertise in relevant areas, such as incident response, intrusion analysis, incident handling, malware analysis or security engineering

• Demonstrated experience in an enterprise-level incident response team or security operations center. Direct experience handling advanced cyber security incidents and associated incident response toolset

• Advanced technical knowledge associated with various operating systems, network services and applications. A keen understanding of logging components and capabilities

The pay range for this role is $96,113 - $173,004. Job-related, non-discriminatory factors used to determine the actual offered rate include qualifications and experience, geographic location, education, external market data, and consideration of internal equity. The anticipated close date of this job requisition is: August 05, 2024.

As part of the total rewards package, this position is eligible for a short-term incentive based on performance. In addition, Jabil offers benefits to enhance your health, wealth, and resilient self. These include medical, dental, and vision insurance plans; paid time off accruing at a rate of 3.07 hours during your first year of employment; 4 weeks of paid parental leave; in 2024, 12 company-paid holidays (10 fixed holidays and 2 optional floating holidays), subject to change yearly; 401(k) retirement plan; and employee stock purchase plan.

BE AWARE OF FRAUD: When applying for a job at Jabil you will be contacted via correspondence through our official job portal with a jabil.com e-mail address; direct phone call from a member of the Jabil team; or direct e-mail with a jabil.com e-mail address. Jabil does not request payments for interviews or at any other point during the hiring process. Jabil will not ask for your personal identifying information such as a social security number, birth certificate, financial institution, driver's license number or passport information over the phone or via e-mail. If you believe you are a victim of identity theft, contact the Federal Bureau of Investigations internet crime hotline (www.ic3.gov), the Federal Trade Commission identity theft hotline (www.identitytheft.gov) and/or your local police department. Any scam job listings should be reported to whatever website it was posted in.

Jabil, including its subsidiaries, is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, disability, genetic information, veteran status, or any other characteristic protected by law.

Accessibility Accommodation

If you are a qualified individual with a disability, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access Jabil.com/Careers site as a result of your disability. You can request a reasonable accommodation by sending an e-mail to Always_Accessible@Jabil.com or calling 727-803-7988 with the nature of your request and contact information. Please do not direct any other general employment related questions to this e-mail or phone number. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to.