Security Operations Engineer, Senior - Nationwide - Remote
SENIOR SECURITY OPERATIONS ENGINEER
The Senior Security Operations (SecOps) Engineer is responsible for understanding business processes qualitatively and to proactively identify and resolve weaknesses in the enterprise. Primary responsibility of this role is to own and continuously improve all the vulnerability management processes, from network scans to application scans to remediation processing. This role provides research, analysis, coordination, and briefs leadership on efforts, projects, and risks. This leader must remain current with changing technology, industry best practices, and standard security frameworks.
The Senior SecOps Engineer reports to the SecOps Manager. The ideal candidate will possess a strong technical information security background and a passion for designing and enhancing prudent and effective and elegant operational processes. This key role serves critical functions for the firm and supports multiple stakeholders and works closely with infrastructure and development teams.
ESSENTIAL DUTIES:
- Design, build, maintain, and improve vulnerability management systems and processes (secure code review, vulnerability assessment, etc.)
- Execute and improve security operations processes (SIEM response, blocklist management, Endpoint/Network Detection and Response management, major incident support, etc.). Monitors systems for attempts to circumvent existing security controls by both internal employees and external threat actors.
- Conduct research and engineering initiatives to automate and orchestrate security operations for efficiencies and diligence in support of Information Security functions and operations.
- Communicates the effectiveness of security controls to IT leadership and the business. Collaborate with technical teams.
- Other duties as assigned
QUALIFICATIONS
EDUCATION/CERTIFICATIONS
Required:
- Bachelor's degree or equivalent work experience
Preferred:
- CISSP, CISA, GCIH, CEH, OSCP, etc.
- Master's degree in relevant field
TECHNICAL/SOFT SKILLS
Required:
- Critical, structured thinking
- Deep technical understanding of CVSS, OWASP Top 10, and Vulnerability Exploitability ratings
- Ability to brief leadership and a variety of stakeholders
- Solid understanding of security applied to OS, applications, networking, cloud, mobile, etc.
Preferred:
- Applied skills in Security Orchestration and Automated Response
- Business Intelligence and Analytics
- Python or other scripting and automation experience a plus
EXPERIENCE
Required:
- 6+ years' security experience
- Strong leadership and communication skills
- Ability to perform under pressure and handle multiple priorities
- Self-motivated, operates with a high level of integrity.
Preferred:
- 10+ years' security experience
- Experience handling significant cyber incidents
LEADERSHIP SKILLS
Required:
- Experience organizing multidisciplinary groups and organizations through security incidents is required.
- Ability to communicate and influence technical IT operators as well as senior leadership.
Preferred:
- Build, develop, and maintain rapport with IT counterparts
- Set and communicate priorities per findings and incidents
In accordance with applicable law and RSM policy, prospective hires will be required to demonstrate that they have been fully vaccinated for COVID-19 . If not vaccinated for COVID-19 they must qualify for an accommodation to this vaccination requirement o r participate in testing .
If you are located in New York, pursuant to current applicable law, you will be required to be vaccinated to enter the New York office and testing is not an option to enter the New York office.
You want your next step to be the right one. You've worked hard to get where you are today. And now you're ready to use your unique skills, talents and personality to achieve great things. RSM is a place where you are valued as an individual, mentored as a future leader, and recognized for your accomplishments and potential. Working directly with clients, key decision makers and business owners across various industries and geographies, you'll move quickly along the learning curve and our clients will benefit from your fresh perspective.
Experience RSM US. Experience the power of being understood.
RSM is an equal opportunity/affirmative action employer. Minorities/Females/Disabled/Veterans.
Job ID: req25528
Line of Business: Internal Client Service
SubFunction: IT
Job Type: FullTime
Req #: req25528
Location: Minneapolis, MN US
Region: National
Job Category: Corporate Information Technology
Employment Type: Experienced
Degree Required: None
Travel: No