Location: Newport Beach, CA Description: Our client is currently seeking a Security Engineer II
Responsibilities
Identify, investigate, and respond to the organization's security threats.
Develop and operationalize effective detection content aligned to MITRE ATT&CK framework.
Establish and refine repeatable playbooks and procedures allowing the team to efficiently and accurately investigate alerts.
Serve as an escalation point for other Security Operations team members.
Perform triage of service requests from customers and internal teams
Mature and enhance the tools, tactics, and procedures used within the team.
Assist with investigations conducted by our Incident Response Team.
Maintain expert level knowledge of the tools and processes required by the role and serve as a capability lead in your area of expertise.
Maintain awareness of the current threat landscape and recommend mitigations against threats.
Assist in the generation of threat advisories to inform stakeholders and customers of relevant, newly emerging threats.
Perform log analysis across many different tools, applications and operating systems
Factors for Success
5+ years of experience in Information Security.
2+ years of experience working in a SOC.
Knowledge and familiarity with current industry best practices (information security policies, procedures and regulations) and tools (event management and automation) to perform cyber defense activities within the context of an Enterprise SOC.
Experience working within an enterprise SIEM. Splunk and Splunk Enterprise Security is preferred.
Ability to participate as a member of operational team, or function independently to achieve organizational objectives and project outcomes.
Knowledge of adversarial tactics, techniques and procedures (TTPs) and ability to share meaningful insights within the context of an organization's threat environment.
Relevant professional certifications such as Security+, C|EH, GCIH, CISSP and/or equivalent professional experience, education or skills.
Strong documentation and soft skills
Growth mindset with a willingness to learn
TECHNICAL SKILLS
Must Have
MITRE ATT&CK
Playbook Development
Security Operations Center
SIEM
Use Case Development
Nice To Have
CrowdStrike Falcon
Splunk
Splunk Enterprise Security
XSoar
Contact:
This job and many more are available through The Judge Group. Find us on the web at www.judge.com