Senior Security Engineer
Posting ID: 7307757
The client delivers cloud, security, IT, and software development solutions across industry best-in-breed manufacturers. rmsource provide solutions to help customers reduce costs, improve service levels, increase revenues and gain local-to-global competitive advantage. With their end-to-end solutions, we offer a single company and a single point of accountability for all your IT needs. Their customers span a variety of industries including healthcare, legal, education, financial, manufacturing, and city, state, and federal government. rmsource's professional service teams leverage ITIL-based practices to manage our customer's applications and infrastructure.
Network and Security team consists of 10 people. The team is broken down by 6 Engineers, 2 Network Architects, and 2 Security Architects. This team is responsible for designing, implementing and supporting a varieties of customers Networks and Security Infrastructure. Each member of this team is responsible for knowing how to implement, configure, and troubleshoot the full lifecycle of SIEM tools and Windows security, while also being able to support each customer post implementation.
Day to day:
This person is expected to provide fully outsourced turn-key security solutions based on customer's needs (SIEM design, Windows security investigation and configuration, provide security recommendations, research new security ideas for internal and external use). In addition they will be required to perform project based work based off of current and new customer's needs. This will require the person to be very organized, while also being great at multitasking.
They are transitioning their customers from AlienVault to the cloud native Microsoft based SIEM product called Sentinel. Great opportunity to get that experience, especially with something so new like Sentinel.
The Senior Security Engineer works in Security Operations Center as a member of the Network and Security Services Team. The Senior Security Engineer will be a part of NOC and SOC services focusing on supporting various IT, Network and Security infrastructures and customer systems. This position will be a senior operational and customer facing resource providing thought leadership and technical expertise around SIEM, security monitoring, anomaly detection, attack mitigation, and technical security solutions.
Primary Duties and Responsibilities:
* Research, analyze and respond to active or potential security events from various security platforms and technologies
* Utilize SIEM, EDR and NGFW security solutions to conduct threat hunting activities
* Serve as subject matter expert for Windows-based security and event detection.
* Provide collaboration for network-based security and event detection.
* Create and maintain SIEM reporting and EDR, MDR protection policies
* Resolve problems independently and understand escalation procedures.
1. Must have strong interpersonal skills to be in continued contact with Management and Customers
2. Information Security Experience (5+ years)
Threat intelligence and assessment
3. Enterprise Windows Security (3+ years)
AD / Windows Security Architecture
Privilege escalations & Lateral movement techniques
Mitigation strategies and Event correlation
4. Web-based attack security
Attack strategies and techniques
Attack detection and mitigation strategies
5. SIEM configuration and support
Alien Vault (Preferred)
Splunk, ArcSight, QRadar, LogRythm
CERTIFICATIONS (Nice to Have)
o (ISC)2: CISSP
o SIEM certification in the platforms mentioned in the required qualifications section
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
Recruiter: Allisen Capman