Lead cyber security engineer (soc lead) - united states, tarin kowt
Location: johnston, ri
description:
lead cyber security engineer (soc lead)
full time position
remote (est)
salary: negotiable
our client is a leading property insurer of the world's largest businesses, providing more than one-third of fortune 1000-size companies with engineering-based risk management and property insurance solutions. this organization helps their clients maintain continuity in their business operations by drawing upon state-of-the-art loss-prevention engineering and research; risk management skills and support services; tailored risk transfer capabilities; and superior financial strength. to do so, we rely on a dynamic, culturally diverse group of employees, working in more than 100 countries, in a variety of challenging roles.
responsibilities;
assists with daily security event monitoring and subsequent investigation activities!in the event that a security incident has been found, follows enterprise incident response standard processes follow proper escalation.handling security events called out by more junior team members. recommends and facilitates implementation of enhanced configurations, policies, and processes. these will improve the effectiveness and efficiency of threat prevention, detection, and response services.performs security assessments of business and technology initiatives. this will be to identify gaps and lead efforts to develop and implement solutions to mitigate those gaps.maintain familiarity with client security standards and ensure processes exist to demonstrate compliance with those standards. also, that technologies and security policies are implemented in support of those standards.stay abreast of changes in the threat landscape by following industry experts, publications, newsfeeds, and threat intelligence sources.identify ways to incorporate this information into ongoing security practices. maintains a high level of communication and teamwork both within security infrastructure services team and across other groups to optimally accomplish goals & objectives.capable of working with business leaders and is leadership to promote security awareness, understanding, and improvements as well as satisfy their concerns.maintains clear concise and accurate documentation for processes and configurations. ensure documentation is kept up to date and in the proper shared, accessible location.independently identifies areas where additional process or technology documentation is needed and ensures that it is developed.supports the development of current and future state architecture documentation where appropriate.leads and coordinates advanced threat hunting activities to seek out threats in the environment which might otherwise remain undetected by existing monitoring/prevention measures.develops accurate estimates of time and effort required to implement upgrade or modify complex system configurations.produces necessary work/test plans for accomplishing these efforts.provides project leadership and direction of day-to-day project activities.mentors junior staff in all areas of responsibility including professionalism, communication, teamwork, problem solving, and technology design implementation maintenance and trouble resolution.assists principal and architect roles with strategy and innovation adoption efforts, as well as efforts to identify and recommend new technologies and/or capabilities which will enhance cyber security program.leads planning, design, and execution of major changes.assists as escalation point with complex operational and systems engineering needs with security infrastructure technologies (such as siem, ueba, firewall, av/edr, dlp) used to prevent, detect, and/or respond to security incidents. these operational activities may include resolving called out complex and/or business impacting technology issues, investigating complex security events, and participating in incident response exercises.leads advanced cyber security incident investigations and helps to shape threat-hunting activities which may lead to incident response efforts.qualifications:
minimum of seven (7) years of experience in information technology or business analysisat least five (5) years in an information security specific field, such as computer forensics, network perimeter security, incident response, system security, threat research, or working in or in support of a security operations center.demonstrated knowledge of information security subject area via relevant advanced industry certification (such as: cissp, sscp, cisa, cce, security+, giac, ceh, etc.)skills
strong verbal and written communication skills.ability to communicate advanced technical subjects including controls and control effectiveness, infrastructure architectures, and risks, to a non-technical audience.solid interpersonal skills.ability to coordinate activities with team members and other partners.excellent customer service skills. must have a good work ethic, great time management skills and a positive demeanor.ability to work independently on a team, or in a leadership role on a team.ability to multi-task and change priorities with effective results.strong knowledge of at least one of the following areas: operating systems, databases, systems, networks, application development. ability to design and implement technical solutions for business problems while balancing functionality, sustainability, time to delivery and costs.ability to develop and maintain current and future state technology architectures. advanced knowledge of and experience with computer vulnerabilities, hacker methodologies and other threats. advanced ms excel and reporting skills required. experience using powerbi strongly preferred.ability to use various trusted sources of information (articles, webinars, internet, etc.) to gain accurate knowledge of current security threats, vulnerabilities, mitigating strategies to address them. then, recommend and implement appropriate solutions for the organization.advanced understanding of at least one security, technical, or risk subject area.significant experience working with vendors and resellers, managing vendor/reseller relationships, and bringing available resources to bear to solve problems or realize opportunities.experience managing large complex projects, producing any necessary artifacts, and meeting critical landmarks.education:
4 year college degree/bachelors; information security / assurance, computer science, information technology, or a related field, or equivalent work experience or technical training with a non-related degree.
we offer our employees a wide range of benefits including career long learning opportunities, tuition reimbursement, 401 (k), pension, flexible schedules, rich health and well-being programs, generous time off allowances, volunteer days and so much more!
our client is an equal opportunity employer and is committed to attracting, developing, and retaining a diverse workforce. please note that all client visitors, including external candidates interviewing for open positions will be required to be vaccinated and should be prepared to provide proof of vaccination.
contact: [link available when viewing the job]
this job and many more are available through the judge group. find us on the web at [link available when viewing the job]
Apply to this job now Report abuse