Are you passionate about security in the cloud? Are you looking for a place to put your passion for security operations and vulnerability management to use on the latest cloud-based technologies? Do you enjoy not having the same day twice? If so, Clarabridge is the place for you. We are seeking a Senior Information Security Engineer to join a highly successful team within a fast-paced growth company.

We are looking for a Senior Information Security Engineer for triage and deep security analysis, recommend mitigations, verify triage evidence and incident response coordination, and support threat hunting. Further, you will support vulnerability management and penetration testing activities, as well as support advanced investigations, incident response, malware analysis, and forensics as required. Your day will entail overseeing, monitoring, or performing triage of the security alarm queue, providing advanced analysis, monitoring security sensors and agent uptime and work to resolve any issues with our security toolset, collecting information required to initiate escalation in support of incident response activities. You must possess an excitement for solving complex problems and working collaboratively with others.

You will also contribute to the development and implementation of security policies and procedures and works cross-functionally to address security alarms, vulnerabilities, threats, security gaps, and gaps in security controls. Further, you will participate in identifying current and emerging cyber events, cyber threat analysis, along with developing countermeasures with known or discovered indicators.

Job Responsibilities

The Senior Information Security Engineer reports to the Associate Manager of Security Operations and has the following responsibilities:

• Leading or contributing to projects for technology enhancements within the SOC. Assists in the evaluation, selection, and installation of security products.
• Overseeing or monitoring triage and analysis of the security incident and event management (SIEM) solution, triaging events, and escalating as required.
• Supporting vulnerability management, security operations center (SOC), intrusion detection/prevention (IDS/IPS), and cyber and physical threat analysis activities.
• Reviewing common indicators of compromise (IOC) and contributing to intrusion prevention system signature implementation.
• Contributing and performing web application, network, and application-level penetration testing. This includes contributing to the design, development, and supporting internal penetration tests as well as coordinating with third parties to conduct external penetration tests.
• Supporting internal security assessments.

Competencies

This position requires or prefers the following competencies for this position:

• Bachelor’s degree with at least five years preferred, associate degree will receive consideration. Prefer degree in Information Assurance, Computer Science, Information Security, or other IT/security-related discipline.
• Security+, CISSP, CEH, or other relevant security certifications required.
• Experience or knowledge of SIEM, security operations center, IDS/IPS, antivirus central management, incident response activities preferred.
• Experience with ISO, NIST, HITRUST, SOC auditing principles preferred.
• Experience with major cloud service providers (e.g., AWS, IBM Cloud).
• Basic experience with hands-on penetration and knowledge of testing principals.
• Knowledge of OWASP and architectures including systems, networks, and a variety of security concepts, practices, and procedures.
• Able to perform and prioritize a variety of tasks.
• Good written and verbal communication skills are necessary.