Senior Security Operations Engineer

Threatconnect, Inc. Arlington , VA 22201

Posted 6 days ago

Company background

Designed by analysts but built for the entire team (security operations, threat intelligence, incident response and security leadership), ThreatConnects intelligence-driven security operations platform is the only solution available today with intelligence, automation, analytics, and workflows in a single platform. Centralize your intelligence, establish process consistency, scale operations, and measure your effectiveness in one place. To learn more about our threat intelligence platform (TIP) or security orchestration, automation, and response (SOAR) solutions, visit ThreatConnect.com.

Job Description

The Senior Security Operations Engineer implements and operates data security functions for various ThreatConnect information systems in support of the ThreatConnect InfoSec and compliance programs.

Role Specifics

In this role you'll get ...

  • To assist in the development of systems and processes to support ThreatConnect information security and compliance programs such as ISO 27001 and SOC 2
  • To hunt for and investigate events of interest using log aggregation and correlation
  • To create, implement, and maintain system baseline configurations
  • Participate in change management and perform security impact analysis for production system configuration changes
  • To architect and assist in the implementation of security architecture of various ThreatConnect systems
  • Perform security vulnerability and compliance scans of websites, operating systems, and databases, and track and report findings
  • To coordinate with the various ThreatConnect teams to address vulnerabilities in a timely manner
  • To perform penetration testing on ThreatConnect SaaS and various other web applications
  • To respond to and perform cyber forensic investigations for security incidents
  • To participate in internal and external compliance audits such as ISO 27001, SOC 2, and FedRAMP

1-3-6-12 Month Plan

On day one well expect you to

  • Familiarize yourself with the ThreatConnect InfoSec program and compliance requirements
  • Familiarize yourself with various ThreatConnect system designs and their security architectures
  • Analyze current gaps in the technical and operational controls

At 3 months well expect you to

  • Design and implement technologies and operational controls in support of the ThreatConnect InfoSec program
  • Document system security plans for ThreatConnect systems including security architectures and control implementation

At 6 months well expect you to...

  • Begin continuous security and compliance monitoring to include vulnerability management, event monitoring, and penetration testing
  • Participate in 24x7 on call rotation for security related events

At 12 months well expect you to..

  • Become a key Senior Security Operations Engineer accountable for the day-to-day information security functions
  • Interface with internal and external auditors for compliance audits
  • Partner with the Sr. Director of Security in InfoSec program strategic planning and development of short and long term goals

Requirements

Qualifications:

  • Bachelors degree in Computer Science/Cyber Security or related field
  • 6+ years experience in information security engineering and security monitoring
  • Have a solid understanding of security architecture of environments comprising AWS (S3, EC2, database services, VPCs, security groups, backup services, CloudWatch, Cloudtrail, GuardDuty etc.), Linux, Windows server and user OS, databases (RDS, SQL, SAP HANA, Postgres), ElasticSearch, and Mac OS
  • Strong understanding of security systems such as malware protection, firewalls (AWS WAF, Palo Alto), IDS/IPS, DLP, and load balancers
  • Strong understanding of encryption, secure communication, authentication, secure DNS, and network traffic analysis
  • Strong understanding of configuration management tools such as Ansible, SCCM, and GPOs
  • Expert level understanding of SIEM tools such as Splunk or Graylog
  • Expert level understanding of configuration and operation of vulnerability scanning and penetration testing tools such as Nessus, BurpSuite, and Qualys
  • Have excellent understanding of automated and manual penetration testing using OWASP methodologies and emerging techniques
  • Solid understanding of at least one of the compliance/RMF programs such as ISO 27001, SOC 2, NIST, or FedRAMP
  • Strong communication (documentation and presentation) and analytical skills are required

Added bonuses you have...

  • Setting up brand new event monitoring and vulnerability scanning systems
  • Some formal project management experience or familiarity with it
  • Certifications such as AWS Security and CISS

Benefits

Work-Life Balance:

  • 10 Paid Federal Holidays
  • Accrued Paid Time Off (PTO) for vacation/sick, time
  • Your birthday off
  • Employee recognition program with quarterly awards
  • Employee referral program
  • Military leave options available
  • Education reimbursement program for job-related college courses and professional training
  • Quarterly events with your geographic team
  • Annual company party

Medical:

  • MEDICAL PREMIUM FOR INDIVIDUALS AND FAMILIES ARE 100% COVERED
  • Prescription drug coverage
  • Dental coverage
  • Vision coverage
  • Company-paid short term and long term disability
  • Company-paid insurance and AD&D coverage
  • Pet Insurance

Financial:

  • 401K retirement savings plan with company matching program up to 6%
  • Health Savings Account
  • Flexible Spending Accounts (medical, dependent care, transit and parking)
  • Cell phone stipend
  • Paid Parental Leave
  • Paid Bereavement Leave
icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Product Security Engineer

Amazon.Com, Inc.

Posted 2 days ago

VIEW JOBS 1/23/2021 12:00:00 AM 2021-04-23T00:00 Come and build the future with us. Our mission is to keep AWS customers safe and secure by helping them detect and remediate vulnerabilities at never before seen scale. Amazon Inspector helps AWS customers improve their security posture by continuously monitoring their cloud infrastructure and associated workloads against vulnerabilities and exposures. When it comes to security, time is of the essence. Our goal is to help our customers quickly discover and remediate vulnerabilities that poses the greatest risk to their organization. We are innovating new ways of building massively scalable and globally distributed security systems for assisting our customers with security and compliance. Security Services are crucial for long-term success of AWS and it is the future of AWS. We are rapidly expanding our team to meet our fast growing needs. Are you passionate about discovering software vulnerabilities, creating exploits and remediations? Amazon Inspector is looking for a seasoned Security Engineer with a strong cybersecurity background, problem-solving abilities, and customer obsession. You will help us uncover groundbreaking security features to improve our customers security posture. We are looking for someone who can balance technical risks against business risks and consistently drive for the right results. You must have the passion for engineering solutions to complex security challenges, and recognize and fill gaps in capabilities. We value broad and deep technical knowledge, specifically in the fields of operating system security, network security, cryptography, software security, malware analysis, forensics, security operations, incident response, and emergent security intelligence. Job responsibilities include defining customer use cases and requirements, designing and prototyping security solutions, driving security value into software services, educating customers on product features and best practices, and educating stakeholders on best practices and standards. Successful candidates will be strong leaders who are well versed in vulnerability detection & management, vulnerability remediation tools & practices, and compliance standards. As a security engineer, you will: * Identify and drive continuous feature improvements. * Evaluate complex business and technical requirements, communicating inherent security risks and solutions to technical and non-technical business owners. * Apply secure development life-cycle (SDLC) practices including threat modeling and security testing * Influence decision-makers and stakeholders throughout the organization in multiple teams to achieve a consistently high security bar * Create security guidance and documentation for external customer consumption. * Develop security tools and automation. * Develop and deliver security training and outreach to AWS customers. This position can be located in Herndon, VA or Arlington, VA. Work/Life Balance Our team puts a high value on work-life balance. Most days, our teams are either working from the Herndon or Arlington (HQ2) offices in Virginia, but we're also flexible when people occasionally need to work from home. We generally keep core in-office hours from 10 am to 5 pm. About half of us come in earlier and the other half of us stay later. Mentorship & Career Growth We're committed to the growth and development of every member of the Inspector team, and that includes our Security Engineers. You will have the opportunity to contribute to the culture and direction of the entire Security org and deliver site-wide initiatives that will improve the life of all of our teams. Inspector is a growth environment - we're hiring and scaling rapidly to meet the needs of our customers. You'll have the opportunity to grow your scope of influence naturally as we scale and will have get to hire & develop other leaders along the way. Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon's culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust. * Bachelor (undergraduate) degree in a relevant field (Computer Science, Software Engineer, Security, or others) OR an equivalent combination of education, training, and experience. * Minimum of 5 years of experience with any combination of at least 3 technical disciplines, including the following: vulnerability detection and exploit creation, cloud security, network security, application security, mobile security, identity and access management, network architecture, system administration, and systems engineering. * Minimum 5 years of experience in security practices with a focus on vulnerability assessment and management. * Minimum 5 years of experience in information security and industry or government certifications and compliance. * MS degree in Computer Science, MIS, Computer Engineering. * Knowledge in security engineering, system and network security, security protocols, cryptography, and application security. * Experience with multiple programming languages (such as Java, C++, Ruby, Python, Perl) for both tool development and code review * Experience in partnering with product and program management teams. * Excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences. * Excellent written and oral communication skills. * Meets/exceeds Amazon's leadership principles requirements for this role. * Meets/exceeds Amazon's functional/technical depth and complexity for this role. Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, visit https://www.amazon.jobs/en/disability/us . Amazon.Com, Inc. Arlington VA

Senior Security Operations Engineer

Threatconnect, Inc.