Job Description
Are you a seasoned Security Engineer with a passion for safeguarding digital landscapes and ensuring robust protection against emerging threats? We are seeking a dynamic and dedicated Security Engineer to join our team and fortify our security measures across various domains. As a Security Engineer, you will be at the forefront of our mission to ensure the highest level of security and compliance for our client’s organization. Your expertise in the following areas is paramount:
Key Responsibilities
- Work closely on security aspects of multiple technologies and methodologies as it relates to operating systems, databases, access controls, patch management, encryption, antivirus, and vulnerability assessments etc. to assist the Engineering and Compliance team with effective research, data gathering, analysis, metrics, reporting and communications.
- Identify security prospects of multiple solutions that help keep the organization safe from threats.
- Experience in building and maintaining security systems.
- Provides direction to infrastructure, operations, data, and network teams throughout the implementation of security aspects in production, and beyond.
- Maintains knowledge of engineering NextGen designs, security trends, threats, and attack techniques.
- Builds and maintains effective relationships with management, peers, project managers, and internal customers.
- Translate threat intelligence into actionable security across tools such as endpoint protection, Access management, patch management, firewall, IPS and malware detection across multiple security vendor platforms
- Get hands-on with in-depth investigations, malware analysis, and connecting the dots between user activities and network traffic to resolve complex security incidents.
The ideal candidate will have
- In-depth experience in the Microsoft 365 ecosystem, with a focus on Endpoint, Email, Vulnerabilities, and Threat Hunting.
- Proficiency within Microsoft’s E5 licensing environment.
- Expertise in Identity Governance, Conditional Access, and Applications, including Single Sign On (SSO) implementation.
- Comprehensive understanding of Logging, Event Management, Microsoft Sentinel, Incident Management, and Security Operations Center (SOC) runbooks.
- Automation, Data Connectors, and Analytic Rules.
- Proficiency in Kusto Query Language.
- Integration with Threat Intelligence feeds.
- Mastery of Endpoint Security tools, including Microsoft Defender for Endpoint (MDE), Microsoft Intune, JAMF.
- Expertise in system hardening and Intune policy/compliance configuration.
- Experience with Rapid7, Nessus etc and adherence to Microsoft Patch Tuesday.
- Experience with penetration testing.
- Proficiency in Common Vulnerability Scoring System (CVSS) scoring.
- Network Detection and Response (NDR) experience.
- Skills in Segmentation, Firewall Reviews, and packet analysis (Wireshark, etc.).
- Host isolation and containment strategies.
- Proficiency in DNS Security.
- Familiarity with KnowBe4, emphasizing the importance of user security awareness.
- Competency in Cloud Security practices, including assessment and remediation in Azure and AWS.
- Expertise in email security such as header analysis for Phishing.
- Expertise in Identity and Access Management (IAM), Identity Provider (IdP), Privileged Identity Management (PIM), JustInTime (JIT) access.
- Knowledge of Azure Defender, Defender for Cloud suite, and Zero Trust principles across Azure, AWS, and GCP.
- Profound understanding of email security, including MSFT Exchange.
- Capability in SMTP, MAPI, and email header analysis for threat detection.
- Validation of SPF/DKI/DMARC configurations.
- Hands on experience with the analysis and handling of suspicious email attachments and adherence to best practices.
Education & Qualifications
- Bachelor’s Degree in an IT related discipline
- Minimum 5 years of experience
- CISSP or similar security related certification
- In lieu of certifications, at least 2 years of information security Experience in building and maintaining security systems.
If you are a highly motivated Security Engineer with a proven track record in these areas, we invite you to join our team. Help us secure our digital infrastructure, protect our sensitive data, and stay ahead of emerging threats. Your expertise is crucial in ensuring the highest standards of security and compliance.