Senior Security Specialist, Security Operations

Disney Glendale , AZ 85301

Posted 1 week ago

Job Description:

Work within the Security Operations Center team that is responsible for protecting the network and company assets from any security threats or attacks through active monitoring, investigating security issues. This team develops and monitors security scripts, automation, machine learning models, scans, alerts, and monitors for both proactive activities as well as threat intrusion and detection.

Job Type

Full Time

Segment

Parks, Experiences and Products

Category

Technology

Basic Qualifications

  • A minimum of 5 years' technical experience in development related work, including work within a security engineering discipline.

  • CISSP certification or equivalent required.

  • Strong understanding of how malicious code and exploits work.

  • Basic computer forensics knowledge.

  • Strong technical skills and the ability to learn and continue to maintain cutting edge skills and knowledge on a variety of technical areas (Unix/Linux, Application Security, Vulnerability Management, etc.).

  • Have a clear understanding of cloud computing services/ deployment architecture.

  • Good organization skills and attention to detail.

  • Demonstrated professional written, verbal, and presentation communications skills.

  • Highly flexible and adaptive; able to multi-thread across a number of simultaneous work efforts.

  • Sharp analytical and problem-solving skills.

  • Experience with security testing services, such as Qualys, Nexpose, Tenable, and Webinspect.

  • Working knowledge of network and IT security components, including firewalls, intrusion detection systems, anti-malware software, data encryption, VPN's, vulnerability scanners, server operating systems, and other industry-standard techniques and practices.

  • Knowledge of common web and mobile application vulnerabilities, such as the OWASP Top 10 for web and mobile.

  • Demonstrated ability to handle confidential information.

  • Proven ability to work effectively in a fast-paced environment as part of a high performance team

Business

Parks, Experiences and Products

Required Education

  • Bachelor's degree in Information Security related field or related work experience testing information systems

Preferred Qualifications

  • Ability to be flexible with work schedule and travel requirements.

  • Must be willing to be part of an on-call schedule.

  • Knowledge of security related legislation/regulations with emphasis on PCI, General Data Protection Regulation (GDPR) and privacy.

  • Experience with both commercial and open source tools such as Kali, burp, nmap, nessus, openvas, sqlmap, metasploit, meterpreter, kismet, fiddler, wireshark, and Aircrack-ng

Postal Code
91201

Responsibilities

  • Respond to alerts that were generated internally or reported externally.

  • Investigate security issues to determine risk and eliminate false positives.

  • Automate security controls to reduce our attack surface, proactively seek out vulnerabilities, and decrease response and recovery times.

  • Contribute and collaborate with all groups within DPEP to safeguard our data and respond to threats.

  • Communicate vertically and horizontally to keep stakeholders informed.

  • Mentor junior members on security fundamentals and contribute to a tight knit team.

  • May perform other duties and responsibilities necessary to support and protect the business.

Job Description

Work within the Security Operations Center team that is responsible for protecting the network and company assets from any security threats or attacks through active monitoring, investigating security issues. This team develops and monitors security scripts, automation, machine learning models, scans, alerts, and monitors for both proactive activities as well as threat intrusion and detection.

Basic Qualifications

  • A minimum of 5 years' technical experience in development related work, including work within a security engineering discipline.

  • CISSP certification or equivalent required.

  • Strong understanding of how malicious code and exploits work.

  • Basic computer forensics knowledge.

  • Strong technical skills and the ability to learn and continue to maintain cutting edge skills and knowledge on a variety of technical areas (Unix/Linux, Application Security, Vulnerability Management, etc.).

  • Have a clear understanding of cloud computing services/ deployment architecture.

  • Good organization skills and attention to detail.

  • Demonstrated professional written, verbal, and presentation communications skills.

  • Highly flexible and adaptive; able to multi-thread across a number of simultaneous work efforts.

  • Sharp analytical and problem-solving skills.

  • Experience with security testing services, such as Qualys, Nexpose, Tenable, and Webinspect.

  • Working knowledge of network and IT security components, including firewalls, intrusion detection systems, anti-malware software, data encryption, VPN's, vulnerability scanners, server operating systems, and other industry-standard techniques and practices.

  • Knowledge of common web and mobile application vulnerabilities, such as the OWASP Top 10 for web and mobile.

  • Demonstrated ability to handle confidential information.

  • Proven ability to work effectively in a fast-paced environment as part of a high performance team

Required Education

  • Bachelor's degree in Information Security related field or related work experience testing information systems

Preferred Qualifications

  • Ability to be flexible with work schedule and travel requirements.

  • Must be willing to be part of an on-call schedule.

  • Knowledge of security related legislation/regulations with emphasis on PCI, General Data Protection Regulation (GDPR) and privacy.

  • Experience with both commercial and open source tools such as Kali, burp, nmap, nessus, openvas, sqlmap, metasploit, meterpreter, kismet, fiddler, wireshark, and Aircrack-ng

Responsibilities

  • Respond to alerts that were generated internally or reported externally.

  • Investigate security issues to determine risk and eliminate false positives.

  • Automate security controls to reduce our attack surface, proactively seek out vulnerabilities, and decrease response and recovery times.

  • Contribute and collaborate with all groups within DPEP to safeguard our data and respond to threats.

  • Communicate vertically and horizontally to keep stakeholders informed.

  • Mentor junior members on security fundamentals and contribute to a tight knit team.

  • May perform other duties and responsibilities necessary to support and protect the business.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Analyst I II Iii Senior

Alaskausa Mortgage Company

Posted 5 days ago

VIEW JOBS 4/21/2019 12:00:00 AM 2019-07-20T00:00 Description Category: 09 Reports To: Information Security Manager Primary Functions: Perform information security functions in support of credit union operations. Duties and Responsibilities: * Assist in the maintenance of current security systems. * Monitor reports, systems, logs and alerts for suspicious activity. * Report suspected security violations, threats or inappropriate network actions, in accordance with established response procedures. * May assist in performing assessments of credit union systems to identify and report on vulnerabilities. * May assist in performing system audits against hardening standards and base-line controls. * Conduct initial investigation of suspicious activity and escalates as needed. * Assist in the identification of information risk and documentation of risk analysis and assessments. * Recommend ways to control or reduce information risk. * Perform other duties as assigned. Requirements Education: Associates degree in Computer Science, Management Information Systems or related technical field. Creditable Experience in Lieu of Education: Equivalent technical training and/or IT certifications required. Experience/Skills: Security+, Microsoft Certified System Administrator: Security, Vendor-specific Firewall Certification, GIAC Information Security Fundamentals or other intermediate level certification. Five years demonstrable experience managing and implementing enterprise systems/networks. Experience with Firewalls, IDS/IPS, Vulnerability Assessment tools, Endpoint solutions, Proxy servers, Security Incident and Event Management Systems, Data Loss Prevention, Active Directory and Permissions Management desired. Good written and verbal communication, organizational, and interpersonal skills required. Tenure: Assignment to the Information Security Analyst I category 10, Information Security Analyst II category 09, Information Security Analyst III category 08 or Senior Information Security Analyst category 07 will be determined by the candidate's education or experience. Advancement requires management recommendation and will be based on the candidate's certifications and/or performance. Apply Online Send This Job to a Friend Alaskausa Mortgage Company Glendale AZ

Senior Security Specialist, Security Operations

Disney