Security Operations Engineer

The Security Operations Engineer will have several areas of focus:

• Provide security incident response and readiness as part of a 24x7 Security Operations Center within and in support of the IT Infrastructure and Operations team.

• Support global vulnerability management processes, including OS and infrastructure patching, hardening, and testing efforts.

• Operate and maintain security related tools (HIDS, NIDS, IPS, EDR , Analyzers, Scanners, etc.) to identify active threats, attacks, vulnerabilities, exposures, etc., and prioritize for activity within the team. Assist in speedy identification of mitigation/remediation solutions.

• Must have an understanding on network security, specifically handling Fortinet firewalls.

• Must have good understanding on network security concepts.

• Must have knowledge on application security

Duties and Responsibilities include the following. Other duties may be assigned.

• Apply a risk-based approach to prioritize security-related efforts within the Infrastructure and Operations teams; follow-up with team members on deliverables, communicate status and liaise with global security teams and management.

• Provide security-related input to the Infrastructure and Operations teams' processes, deployments, changes, etc.

• Develop/deploy/administer/support/remediate security tools and processes to meet business requirements. Leverage concepts such as automation, templating, multiple inheritance, error-handling, and code re-use to ensure efficient and simple operation.

• Troubleshoot and remediate errors/failures related to security events, applications,

network, storage, and so forth. Perform root cause analysis for major events.

• Provide support and expertise to other systems and network engineers and administrators, and act as a backup or "secondary" for other areas of responsibility (for example, server administration)

• Ensure security and compliance of the systems, processes and solutions with internal standards, industry compliance standards and best practices.

• Analyze and report accurately and regularly on gaps, risks, failures, efficiencies, improvements, coverage, licensing, etc.

• Interact with technical and non-technical staff from various business units to assess needs, communicate options, and design and implement suitable solutions.

• Deploy OS and/or application patches on Windows or Linux servers.

• Support and Collaborate with Support Services staff to rapidly address workstation and end-user security events

• Create and maintain documentation relating to the job function and the environment: architecture, integrations, code, and application settings. Complete knowledge transfer within the team. Mentor other team members.

• Participate in regular on-call duty and perform after hours work as needed to support business needs, especially participating in a 24x7 Security Operations Center.

• Follow team processes; contribute to refinement of processes and Other duties as assigned

Qualifications:

The individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education and Experience

Required education / experience

• 3 to 5 years of proven experience supporting complex technical solutions

including planning, development, implementation, and support

• Expert in, or strong desire to learn, server and network security tools and

• practices.

• Working knowledge on network Security technologies like Firewalls / Anti-Virus / Vulnerability management

• Must have implementation knowledge of security devices.

• At least two years of security operations experience.

• Experience conducting vulnerability detection efforts

• Experience participating in active security incident response efforts.

Nice to have:

• Certified Ethical Hacker

• Experience conducting penetration testing

• Experience performing forensic attack analysis

• Scripting knowledge

• related replication technologies.

• Windows Server or Linux certifications.

Language Skills

• Ability to effectively communicate in the English language verbally and in writing.

Customer Expectations

• Team player with the appropriate aptitude and underlying intellect.

• Positive attitude and open to share and collaborate in a distributed team setting.

• Need to mentor and guide the junior people in team.

• Good communication skills.

• Open to learn and grow.