Security Engineer

Security Engineer

Vacancy expired!

Equal Plus Consulting has been engaged to search for a Security Engineer to work for a client on-site in Lawrenceville, GA.
Title: Security Engineer
Location: Lawrenceville, GA on-site
State Date: ASAP
Term: 6 Months - 1 Year
Availability Requirements:
Monday – Friday (8AM-5PM)
Position Description:
The Security Engineer assists the Information Security Team by supporting Security staff in their efforts to protect county systems. This position will be responsible for developing and maturing SIEM products and SOAR tools used by the Security Team.
Roles and Responsibilities:

• Implement and manage SIEM and SOAR solutions in the Azure cloud and on-premises environments.
• Create innovative solutions to automate and reduce timeframes for security events.
• Create rules for compliance and audit requirements and create and manage
• Watch Lists for current threats.
• Manage log source groups and validate log sources being imported.
• Perform formal Health Check.
• Perform formal Architectural Review.
• Evaluate, analyze, and modify security alert rules, reports, and policies to minimize the number of false positives in the environment.
• Implementing a SOAR playbook and troubleshooting user experience.
• Create custom documentation for internal and external needs.
• Responsible for mentoring and training of employees on the SIEM tools.
• Assist with designing and documenting work processes within the SOC.
• Perform other duties as assigned.

Minimum Experience:

• Experience with Security Orchestration, Automation and Response (SOAR) tools and technologies (e.g. Sentinel, Splunk).
• Experience with Python scripting language and Json for automation.
• Experience with operating system internals for both Linux and Windows platforms.
• Experience with network and host-based collection tools such as Snort, Nxlog,
• CEF, or commercial Enterprise Detection and Response (EDR) platforms.
• Understanding of network architecture.
• Excellent time management, reporting, and communication skills.
• Superior IT problem-solving skills.
• Bachelor's degree in information systems, information security, computer science, engineering, or similar technical field of study with 2+ years of information security experience; OR 4+ years of information security experience without a degree.

Preferred Experience:

• Experience working with Internal and client Ticketing and Knowledge Base Systems for Incident and Problem tracking, report creation and as well as procedures.

• General security knowledge (GIAC, CEH, Security +, or other security certifications).
• Experience with other security solutions, such as EDR, firewalls, DLP, IAM, IDS/IPS, and vulnerability assessment tools.
• Experience leading technical projects.
• Familiarity with the NIST, PCI, HIPAA and CJIS.
• Ability to handle multiple projects under tight deadlines.