Visit our website Register with us

logo

View all jobs

REMOTE - Information Security (SIEM, DLP, etc) - $129,000 to $193,000

New York City, NY · $129,000 to $193,000
OPEN JOB: Senior Operations Engineer Information Security
LOCATION: New York City, New York
****Mostly remote, however “May require occasional on-site presence; therefore, should live within a commutable distance of NYC”.
SALARY: $129,000 to $193,000
CLIENT: MAJOR HOSPITAL

Position Summary
  • The Senior Security Operations Engineer operates and maintains the InfoSec team’s portfolio of vulnerability management, automation, and other authentication tools.
  • Additional tasks include forensic recovery/support, event management, spam investigation, incident response, threat feed management, penetration testing, proactive defense, and security event management. 
  • This role will focus heavily on operational and strategic level tasks, provide counsel and guidance to the junior level security engineers in the department, and guide other departments in the improvement of their security posture. 
  • The Senior engineer also serves in an architectural capacity, providing the appropriate information and planning required for new technology and policy deployments.

Essential Job Duties
  • Responsible for the daily duties associated with Security Operations team including the extension of services provided to all of the hospital campus and regional affiliates.
  • Implements and supports the SIEM tool, to include the inclusion of data sources and any applicable monitoring agents.
  • Implements and supports the scanning platform, vulnerability attack platform, privileged account management solution and other discovery tools as required.
  • Performs penetration testing on all managed systems and generates reports in order to help remediate any security findings.
  • Implements and supports the Security Event Management Platform to include all correlation and automation capabilities for security functions.
  • Implements and supports web security platforms, the threat prevention system, and other network based sensors as required.
  • Reviews daily threat feeds, host alarms, cloud based reporting, and similar information in order to proactively mitigate threats.
  • Engages in threat hunting to actively search for and identify cyber threats that may have gone undetected
  • Collects and disseminates reports, metrics, and other indicators of vulnerability management functions.
  • Detonation of malware in test lab and interacting with EDR platform
  • Password testing and cracking using various tools like Ophcrack
  • Data Loss Prevention configuration and rule tuning for EDM
  • Partners with the Security Engineering, Risk Management, and Security Operations Center teams in order to provide critical development and automation tasks in support of the groups mission.
  • Partners with the Event and Incident Management team in order to take security event intelligence and produce actionable alarming for the purpose of proactive management of security incidents.
  • Develops test plans, test data and testing schedules. Conducts unit and system tests to verify results of software solutions.
  • Installs/performs in-house and vendor updates, in a timely and efficient manner in accordance with IS change control standards and procedures.
  • May work in multiple phases of systems and applications analysis, and considers the business implications of the application of technology to the current business environment.

Required Qualifications 
  • Bachelor’s degree in a technical or engineering discipline; or equivalent experience
  • At least 6 years of technical experience in an IT related field
  • Exposure to SIEM tools such as Splunk
  • Knowledge of Data Loss Prevention systems and safeguarding sensitive data
  • Extensive systems and network engineering experience related to Windows OS’s, MacOS, and Linux/Unix OS’s
  • Extensive experience using the Kali Linux platform and toolsets
  • Knowledge and experience with vulnerability management platforms such as Nexpose, Tenable, Qualys, etc
  • Knowledge and experience with network security platforms including SIEM, firewalls, intrusion detection and prevention, web proxies and internet content filtering, and EDR/XDR.
  • Knowledge of cryptography and encryption products, data loss prevention, mobile device management.
  • Strong organization skills to prioritize work/life balance, and lead complex projects.
  • Strong interpersonal skills and ability to interact with customers, senior level personnel, subordinates, and team members.
  • Strong leadership skills to explain and guide peer business partners with vulnerability remediation.

Preferred Qualifications 
  • CISSP
  • CEH
  • OSCP
  • Functional and practical experience with scripting and automation techniques

If you are interested in pursuing this opportunity, please respond back and include the following:
 
  • MS WORD Resume
  • required compensation.
  • Contact information.
  • Availability
 
Upon receipt, one of our managers will contact you to discuss the position in full detail.

Jason Denmark
Recruiting Manager
INTERMEDIA GROUP, INC.
EMAIL: jdenmark@intermediagroup.com
LINKEDIN: https://www.linkedin.com/in/jasondenmark/
 

Share This Job

Powered by