Security Engineer II
Jersey City, NJ, United States
Job Description
Job Purpose
100% customer-facing position with the mission of managing technical security controls and effectively managing and communicating vulnerabilities, exploits, and incidents within appropriate operations teams while striving for internal service levels resulting and managing customer risk. The primary purpose is to provide day-to-day operation support of the client's security infrastructure or day-to-day monitoring, management, and response to security events.
Essential Functions
75% - Perform day-to-day management of the security infrastructure within their area of expertise and/or Perform incident/event/detection response and analysis of security events in the enterprise.
10% - Participate and/or ownership of project improvement efforts including infrastructure upgrades, automation development, implementation/testing of new systems. Processes, or techniques, documentations, etc. directly related to the team's goals and effectiveness.
10% - Interact routinely with technology team leadership (i.e. senior security engineer and/or Team Lead)
5% - Assist with the documentation of procedures for security infrastructure within their area of expertise
Experience 3 to 5 years of experience
Senior-level roles as IT Security Engineer
Cyber-Security Analyst, Cyber-Intelligence Analyst
Security Systems Engineer
Security Analyst
Education Two years of College or Technical School resulting in an Associate's Degree or equivalent
Certifications, Accreditations, Licenses
One or more of the following certifications dependent on the actual role: GIAC/SANS certifications - GCIH, GCIA, GCFE, GCFA, GREM, GIAC, GSEC,
ISC-squared CISSP
CompTIA Security+
Microsoft, Linux technical certifications preferred
Special Knowledge, Skills, and Abilities Must be a team player
Experience with one or more enterprise host protection systems, enterprise vulnerability management, network security tools such IPS/IDS, and/or experience with attack tactics, techniques, and procedures used by the APT, Cyber Crime, and other associated threat groups.
Good verbal and written communication skills.
Strong demonstrated skills in one or more enterprise-level OS environments including Microsoft Windows, Linux, or Unix.
Understanding of network communications (TCP/IP, Ethernet, WAN/LAN technologies)
Research and analysis experience
Previous CIRT experience with a targeted (APT) and crimeware threat program
Knowledge of information security threat types, their composition, and IOCs
Dynamic Malware Analysis Experience
Knowledge of attacker tactics, techniques, and procedures (TTPs) used by the APT, Cyber Crime and other associated threat groups
Knowledge of computer security incident investigation and response
Experience analyzing common types of attacks, cybercrime, APT, etc...
Experience with Splunk or similar Log analysis tools and experience reviewing security events
Experience reviewing, analyzing, and providing reporting on ongoing Intel gathering from various classified, sensitive, as well as open-source intelligence sources
Deep internal knowledge of the MS Windows operating system, file system, registry, processes, and communications as well as collection and analysis techniques.
Knowledge of intrusion analysis, network, and host forensics
Scripting experience is a plus (Python, Perl, Ruby, etc.).
Dependent on the actual role, a DoD Secret security clearance may be required
Supervisory Responsibilities
No Supervisory Responsibility
Budget/Financial
Annual Revenue: $138,000
Annual Expense Budget: $114,000
About Us
CBTS serves enterprise and midmarket clients in all industries across the United States and Canada. CBTS combines deep technical expertise with a full suite of flexible technology solutions--including Application Modernization, Managed Hybrid Cloud, Cybersecurity, Unified Communications, and Infrastructure solutions. From developing and deploying modern applications and the secure, scalable platforms on which they run, to managing, monitoring, and optimizing their operations, CBTS delivers comprehensive technology solutions for its clients' transformative business initiatives. For more information, please visit www.cbts.com .
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, age, disability, religion, sex, sexual orientation, gender identity, gender expression, protected veteran, military status or any other characteristic protected by law.
Due to U.S. Government requirements applicable to foreign-owned telecommunications providers, non-US citizens will be required to submit to an extensive government agency background check which will necessitate disclosure of sensitive Personally Identifiable Information.
Attention California Residents:
https://www.cbts.com/privacy-policy/california-privacy-policy/