Security Engineer II

Security Engineer II

Vacancy expired!

Location: Newport Beach, CA
Description: Our client is currently seeking a Security Engineer II

Responsibilities

• Identify, investigate, and respond to the organization's security threats.
• Develop and operationalize effective detection content aligned to MITRE ATT&CK framework.
• Establish and refine repeatable playbooks and procedures allowing the team to efficiently and accurately investigate alerts.
• Serve as an escalation point for other Security Operations team members.
• Perform triage of service requests from customers and internal teams
• Mature and enhance the tools, tactics, and procedures used within the team.
• Assist with investigations conducted by our Incident Response Team.
• Maintain expert level knowledge of the tools and processes required by the role and serve as a capability lead in your area of expertise.
• Maintain awareness of the current threat landscape and recommend mitigations against threats.
• Assist in the generation of threat advisories to inform stakeholders and customers of relevant, newly emerging threats.
• Perform log analysis across many different tools, applications and operating systems

Factors for Success

• 5+ years of experience in Information Security.
• 2+ years of experience working in a SOC.
• Knowledge and familiarity with current industry best practices (information security policies, procedures and regulations) and tools (event management and automation) to perform cyber defense activities within the context of an Enterprise SOC.
• Experience working within an enterprise SIEM. Splunk and Splunk Enterprise Security is preferred.
• Ability to participate as a member of operational team, or function independently to achieve organizational objectives and project outcomes.
• Knowledge of adversarial tactics, techniques and procedures (TTPs) and ability to share meaningful insights within the context of an organization's threat environment.
• Relevant professional certifications such as Security+, C|EH, GCIH, CISSP and/or equivalent professional experience, education or skills.
• Strong documentation and soft skills
• Growth mindset with a willingness to learn

TECHNICAL SKILLS

Must Have

• MITRE ATT&CK
• Playbook Development
• Security Operations Center
• SIEM
• Use Case Development

Nice To Have

• CrowdStrike Falcon
• Splunk
• Splunk Enterprise Security
• XSoar

Contact:

This job and many more are available through The Judge Group. Find us on the web at www.judge.com