Sr PPL IT Pillar Tech (Security Administrator / Threat)

Chicago Bridge & Iron Company Houston , TX 77020

Posted 10 months ago

Job Overview:

Exciting opportunity for an IT security systems administrator with 5 years of experience. This position will be responsible for participating in the strategic and tactical security tool implementations, operation and management of IT security systems, and hunting for indicators of compromise (IOCs) in these tools.

Key Responsibilities/Accountabilities:

  • Research, identify, deploy, integrate and manage cybersecurity operations technologies

  • Monitor and analyze security events from cybersecurity operations technologies to identify indicators of compromise (IOCs) evading detection by utilizing cyberthreat intelligence feeds

  • Develop methods to detect and track APT and targeted attacks

  • Identify cybersecurity operations technology gaps, deficiencies, and recommend corrective actions

  • Assist with the planning, testing, tracking, remediation for identified cybersecurity operations weaknesses

  • Identify, create and mature cybersecurity operations processes

  • Align information cybersecurity operations with NIST, and ISO 27001 requirements

  • Escalate pertinent findings in a timely manner

  • Create clear and professional documentation of finding and recommendation (root cause and risk analysis)

  • Assist with forensic investigations and incident response team (CIRT) activities

  • Work to enhance breadth and depth of knowledge, and practices for emerging risks

  • Have situational awareness of all events, situations, and changes impacting cybersecurity

  • Assign work to Cyber SOC for remediation

  • Able to leverage vendors and internal resources to interface various security tools to automate critical response tasks

  • Research and develop new procedures, scripts, tools, and techniques to continually refine detection and response processes

  • Forward thinking and market evaluation of new tools and techniques to enhance the security posture

Basic Qualifications:

  • 3 years of experience with security information and event management (SIEM) tools

  • 3 years of experience with endpoint protection tools

  • 3 years of experience with perimeter security (DNS proxy, web proxy, SMTP gateway, firewall)

  • 5 years of experience with Active Directory event log analysis

  • 5 years of experience with Active Directory DNS/DHCP architecture and operation from an investigation perspective

  • 3 years of experience with Exchange security event log analysis

  • 2 years of experience with Microsoft cloud services

  • 2 years of experience with security orchestration, automation and response (SOAR)

  • 5 years of experience with Windows desktop and server operating systems

  • 2 years of experience with Forensic investigation experience

  • 2 years of experience with security incident and investigation reports/briefings

  • 2 years of experience working with threat intelligence feeds and IOCs

  • Working knowledge of firewall, router, network switch, and phone system architecture and operation

  • Familiarity with PowerShell, Python and/or SQL is a plus

  • Hands-on hardware/software troubleshooting experience is required

  • Experience working in a team-oriented, collaborative environment is required

  • Strong analysis and problem solving skills

  • Strong oral and written communication skills

  • Ability to multi-task and prioritize workload

  • Capacity to work independently and within a team environment

  • Detail oriented in investigations and communications

  • Able to handle confidential investigations with discretion

Desired Certifications:

  • GCIH, CCNA Security, Security , CISSP

Company Overview:

McDermott is a premier, fully-integrated provider of technology, engineering and construction solutions to the energy industry. For more than a century, customers have trusted McDermott to design and build end-to-end infrastructure and technology solutionsfrom the wellhead to the storage tankto transport and transform oil and gas into the products the world needs today.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Inspector Threat & Criminal Investigations Threat Assessment

University Of Texas M.D. Anderson

Posted Yesterday

VIEW JOBS 2/17/2020 12:00:00 AM 2020-05-17T00:00 The primary purpose of the Inspector, Threat and Criminal Investigations (Threat Assessment) position is to oversee the institutional threat assessment and crime mitigation programs based on directed threats to individuals or the institution at large. Serves as a Campus Security Authority as defined by the Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act (Clery Act). Impacts the law enforcement and security efforts of The University of Texas Police at Houston. KEY JOB FUNCTIONS Leadership and Administration * Provides leadership to and management of assigned personnel through clear direction, communications, development opportunities, and ongoing feedback. * Manages the daily operations of the institutional threat assessment and crime mitigation programs. * Manages staff, including the selection process, coordination of work, performance and development. * Provides expertise to various community outreach and institutional groups. * Maintains a strong working relationship with the universities' communication offices. * Through the risk assessment process provides support to the institutional safety committee, 2-stop committee, facilities management and off-site facility operations. Investigations * Responds to and identifies actual or perceived threats. * Conducts immediate threat reviews and assessments insuring a rapid mitigation response. * Conducts immediate, long term, and pre and post-event threat assessments and analysis to develop ways to minimize future risks. * Produces reports or presentations that outline findings, explain risk, threat and/or vulnerability positions, and/or recommend mitigation measures. Additional Crime Prevention Functions * Creates and conducts crime prevention presentations, training and programs to internal and external audiences. * Researches, produces, evaluates, maintains and updates presentations and other related materials utilized in crime prevention and threat and risk assessment programs and projects. * Oversees security sensitive background investigations on prospective university employees, contractors, students, and volunteers to determine their potential security risk to the university. Other Duties as Assigned * Other duties to include, but not limited to, emergency recall and/or may be required to remain onsite or work extended hours during man-made or natural disasters and unusual occurrences on campus. * Local or long distance travel may be required for training or other business purposes occasionally. QUALIFICATIONS Education Required: Bachelor's degree in Law Enforcement, Criminal Justice Management, Police Science, Business Administration. Experience Required: Seven years of experience as a commissioned peace officer functioning as an investigator, detective, or intelligence officer at an agency/department of 75 or more commissioned police officers, to include three years of supervisory experience. Additional years of experience as an investigator, detective, or intelligence officer may be substituted for the required education on a one-to-one basis. License/Certification All of the following are required: * Eligible to be a commissioned/licensed peace officer for the State of Texas. * Valid Class C Texas driver's license. It is the policy of The University of Texas MD Anderson Cancer Center to provide equal employment opportunity without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, disability, protected veteran status, genetic information, or any other basis protected by institutional policy or by federal, state or local laws unless such distinction is required by law. Additional Information * Requisition ID: 132879 * Employment Status: Full-Time * Employee Status: Regular * FLSA: exempt and not eligible for overtime pay * Work Week: Days * Fund Type: Hard * Pivotal Position: Yes * Minimum Salary: US Dollar (USD) 94,800 * Midpoint Salary: US Dollar (USD) 118,500 * Maximum Salary : US Dollar (USD) 142,200 University Of Texas M.D. Anderson Houston TX

Sr PPL IT Pillar Tech (Security Administrator / Threat)

Chicago Bridge & Iron Company