Cybersecurity Log Infrastructure Engineer
Spectraforce Technologies | |
United States, Florida, Jacksonville | |
Nov 07, 2024 | |
Job Title: Cybersecurity Log Infrastructure Engineer Location: Remote Duration: 6+ Months Job Description The Cybersecurity engineering team develops and manages next generation solutions, systems and assets that support the business and its subsidiaries. Working in a collaborative, creative and fun environment, we offer cybersecurity professionals a wide range of opportunities to utilize and further develop their skills while helping people live healthier lives. Candidates will need to have fundamental hands-on experience with core infrastructure operating systems, host compliance, file integrity monitoring solutions, and advanced malware defensive technologies. Base knowledge of running IBM AIX, Red Hat Enterprise, MAC OSX and Windows Enterprise operating systems. Candidate will have experience with fast paced, incentivized business operations that need to be agile while adhering to diverse regulatory and security framework expectations. Essential Functions * The essential functions listed represent the major duties of this role, additional duties may be assigned. * Research, evaluation, validation, and recommendation of technical security logging solutions for Threat Operations and Incident Response. Supporting the Design, Build, Test, and Implementation of capabilities for the enterprise and its subsidiaries * Coordinates with product vendors and service providers supporting technical security capabilities and processes * Manage cybersecurity log infrastructure and orchestration system/application environment, configuration, policy and required operational activities on assigned technical security solutions * Monitors, reports on, and enhances performance of assigned technical security solutions * Provides security technology incident response and problem management. Troubleshoots software and/or hardware issues/failures on assigned technical security solutions. Resolves alerts and performs remediation activities as required for return-to-operation. * Accountable for follow-up of all security work requests including collaborating with other IT areas to ensure timely completion/resolution and obtainment of appropriate approval levels. * Supports escalations, known issues and out of cycle requests on multiple security solutions for the enterprise and its subsidiaries * Supports the development and maintenance of operational documentation for technical security solutions (e.g. procedures, engineering diagrams, knowledgebase, etc.). * Collects, analyzes, synthesizes and presents data on technical security solutions and processes to peers, leadership and business stakeholders * Assists the migration, upgrade and disposal of complex security capabilities and evaluates risks and impacts * Collaborates with other business areas to deliver on work group initiatives for the enterprise and its subsidiaries * Assists with developing continuous testing and validation of product performance and gap analysis for continuous security hardening processes * Assists execution and alignment to security reference architecture standards and published blueprints. * Assists Disaster Recovery planning, design, implementation and exercises on security technology solutions * Assists remediation actions as a result of threat and vulnerability assessments or audits * Provide training to others on security capabilities, processes, procedures and operational task Additional Required Qualifications: * Basic knowledge of TCP/IP networking preferred * Capacity to work independently and willingness to seek advice/assistance. * Basic understanding of security concepts and controls for network, application, and operating systems. * Ability to troubleshoot and investigate security related issues and having experience or knowledge with vulnerability and patch management. * Strong technical, analytical, and administrative skills. * Strong corporate work ethics. * Strong Documentation and Review Skills to ensure "We say what we do and do what we say" * Have strong problem-solving skills. * Maintain a positive attitude. * Are professionals and possess excellent interpersonal and written communication skills. * Are passionate about technology. * Have the desire and ability to learn new things fast. * Strong Solutioning Skills to help facilitate new technology gaps * Want to be part of an efficient and effective team. * Display an ownership attitude and drive initiatives to completion. * Are a team player that recognizes the bigger picture and understands the value of teamwork. Required Work Experience: 4+ years related work experience 2+ years in Cybersecurity 2+ years Information Technology Infrastructure Required Education: Related Bachelor's degree or additional related equivalent work experience Required Licenses and Certifications (required within 180 days of FT hire) : Cybersecurity Engineer Defense and Threat Operations: SSCP Cybersecurity Engineer Enterprise Cybersecurity Services: SSCP Additional Preferred Qualifications: * Exposure to Project Management methodologies like Waterfall, Agile, Lean or SAFe methodologies Candidates must have experience with Engineering and Administration of Cybersecurity Logs such as: Syslog, CRIBL, log data engines, SplunkES, WEF/WECPosition is offered by a no fee agency. |