Job Title:Solution ConsultantAbout Trellix:Trellix is the cybersecurity company transforming security operations with artificial intelligence (AI), analytics, and automation to create a resilient digital world. Our market-leading AI-powered XDR Platform learns and adapts to disrupt active threats and empower CISOs with living security. The platform’s open architecture and broadest set of native security controls across endpoint, email, network, cloud, and data security integrates with over 500 third-party tools to create multi-vector, multi-vendor event correlation and context to speed up investigations. The Trellix Advanced Research Center provides an additional layer of protection by continuously informing the platform on the latest threat actor TTPs (techniques, tactics, and procedures) and recommendations from millions of global sensors. Trellix and an extensive partner ecosystem accelerate technology innovation and empower over 40,000 business and government customers to build confidence in the protection and resilience of their operations. Learn more at Trellix.com .Role Overview:This role will develop and deliver detailed IT solutions through consulting project activities.About the Role
Client identification through final invoicing for engagements requiring varied interpersonal and technical skills.
Technical responsibilities include problem identification, system architecture definition, hardware/software specification and/or design, implementation, testing, client training, and solution deployment.
Performance is typically evaluated based on utilization, (i.e., billable hours). Project management activities include interaction with company and client managers and cost/schedule monitoring.
May have some financial responsibilities including project cost estimating, proposal generation, and invoicing.
May participate in sales and proposal presentations in addition to completing ongoing team account activities.
Identifies additional product/services opportunities in customer organization. Performance is typically measured by the capture of the consulting engagement and/or delivery of agreed solutions within budgeted hours.
About the candidate:
Understanding of cyber threats, attack vectors, detection capabilities, and associated countermeasures
Experience working in a Security Operations Center to monitor security alerts, respond and remediate detected issues is preferred
Clear understanding of organizational Incident Management processes in relation to threats and vulnerabilities
Maintain a deep knowledge of Trellix (formerly McAfee) Endpoint Security, Application Control/Change Control, ENS, TIE, DXL, DLP.
Knowledge and experience with Threat Hunting.
Experience in Windows, Mac, Linux OS and application hardening, including understanding artifacts and behaviors.
Experience with one or more scripting languages: Python, PowerShell, Go, C#, other command line scripting or similar is preferred.
You may have experience scripting API integrations with response and orchestration tools like SIEM, SOARs and/or XDR platforms
Experience with a SIEM tool and working with SIEM Analyst.
Experience with event correlation and analysis.
Demonstrated technical proficiency in cybersecurity operations, cybersecurity engineering, systems engineering
Experience with Virtualization (VMWare, Nutanix, etc.) and Cloud Services [i.e., AWS, Azure]) and enterprise networks.
Deliver onsite and remote security application/endpoint protection designs, implementations, training, and knowledge transfer for a wide variety of customers.
Be able to identify gaps in application and network security architecture and recommend strategies using a combination of industry-standard security best practices, software controls and other necessary changes to promote a higher level of information security practices.
Author formal reports, architecture designs, optimization guides, and best-practice white papers covering a variety of security topics.
Participate in conference calls, onsite meetings and roundtables with customers, sales, internal product development and support to gather data, scope new and existing work, evaluate or suggest new product features and assist in resolving existing product issues.
Recognize and generate potential product and consulting services sales leads when appropriate and necessary.
Detailed understanding of the TCP and IP protocol suites and ability to dissect and explain the contents of traffic and packets.
Experience with configuration of debugging, event generation, and logging functionality within the application and operating systems, using Syslog or flat-file generation.
Company Benefits and Perks:We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.
Retirement Plans
Medical, Dental and Vision Coverage
Paid Time Off
Paid Parental Leave
Support for Community Involvement
We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com .
