Location: Dallas, TX
Description: Our client is currently seeking a Security Engineer (Tier 3)

Requirement:

• Demonstrated experience using either an Enterprise/MSSPand or cloud Security SIEM technologies as an analyst.
• Ability to support and work across multiple customers and bespoke systems.
• Complete basic safety and security training to meet the customer requirements.
• Ability to work a rotating shift and on-call schedule as required.
• CompTIA Security + certificationor equivalent/higher

Qualifying Experience and Attributes

• Experience with SIEM tuning
• Experience with log ingestion into the SIEM by raw log ingestion, email, and API.
• Ability to create and maintain custom reports, dashboards and views utilizing the SIEM
• Ability to create 'use cases' to customize the alerting of the SIEM to meet customer needs
• Strong knowledge of Virtualized or Cloud Computing.
• Strong Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
• Knowledge of Mitre ATT&CK and Mitre D3FEND
• Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute).
• Knowledge of cybersecurity and privacy principles.
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
• Knowledge of incident response and handling methodologies.
• Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
• Knowledge of key concepts in security management (e.g., Release Management, Patch Management).
• Knowledge of security system design tools, methods, and techniques.
• Knowledge of what constitutes a network attack and its relationship to both threats and vulnerabilities.
• Knowledge of cyber defense and information security policies, procedures, and regulations.
• Knowledge of cyber attackers (e.g., script kiddies, insider threat, nation/non-nation state sponsored).
• Knowledge of system administration, network, and operating system hardening techniques.
• Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
• Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
• Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
• Knowledge of how to use network analysis tools to identify vulnerabilities.
• Skill in recognizing and categorizing types of vulnerabilities and associated attacks.
• Skill in performing packet-level analysis.

Contact: [email protected]

This job and many more are available through The Judge Group. Find us on the web at www.judge.com