Ver más vacantes
Publicado hace 39 días
Intermediate
CyberSecurity Engineer
$63,444 - $81,572 MXN/mes netos
*Salario especifico depende del proceso de seleccion
Description
The Cybersecurity Engineer (CE) is a trusted technical expert working within an active Security Operations Center. The CE works closely with the SOC Staff and our clients to implement tools that reduce or prevent security issues from occurring on the client network. The CE is responsible for working with key client contacts at multiple levels of the organization to identify and align business and IT Security objectives. Responsibilities Provide technical guidance / recommendations to clients to enhance their overall security posture within the managed products. Handles daily proactive maintenance and reactive troubleshooting/repair functions. Proactively monitor technical issues pertaining to the services provided for the client and make recommendations to reduce the risk/impact of similar future problems. Monitors health of security systems. Utilize SIEM and other tools to assist in network investigations, including firewalls, IDS/IPS and network and system monitoring toolsets. Perform postmortem analysis on logs, traffic flows, and other activities to identify malicious activity. Research, develop, and stay current on testing tools, techniques, and process improvements in support of security tools and incident response. Proactively work with clients in the management of technical issues as well asplanning, implementation, skills and knowledge transfer on services provided. Help develop internal software in order to enhance products, services and support.
Requirements
Qualifications Minimum of 3 years of experience in IT security field or IT administration Engineering experience in one of the following technologies is REQUIRED: Microsoft Sentinel, Microsoft Defender, LogRhythm, AlienVault Experience with other SIEM technologies preferred Thorough understanding of IT security concepts Thorough understanding of Anti-Virus and Anti-Malware technologies Familiarity with HIPAA, PCI, and SOX compliance preferred Knowledge of MITRE ATT&CK framework or other attack frameworks preferred Education and CertificationRequirements
Minimum of Bachelor's Degree in information security, computer science, telecommunications management, electrical engineering, or a related field or have 6 years of experience. Advanced network and systems certifications such as RHCE, CCNP, CCNA and Security+ are preferred. Other industry certifications or vendor specific certifications such as ITIL, Microsoft, Fortinet, AlienVault, LogRhythm, Splunk, and IBM are a plus. Job / ExperienceRequirements
Excellent verbal and written communication skills Experience using and/or managing two or more of these technologies: SIEM; DLP; AWS Administrator and Security; Vulnerability scanning and penetration testing Understanding of how a Security Operations Center functions Knowledge of application / stateful / UTM Firewalls. Scripting/Programing in Python is required. Additional languages are a plus. Strong knowledge of networking systems and troubleshooting is preferred Knowledge with NIST, FISMA, DIACAP Knowledge of Windows 2008-19 server platforms Knowledge of VMware and VM server platforms Knowledge of Unix/Linux server platforms is required Working knowledge of analyzing IIS, SQL, firewall, IPS/IDS, Windows and packet analysis Ability to troubleshoot common network devices, network, vulnerabilities and network attack patterns Ability to establish and maintain positive and effective work relationships with coworkers, clients, members, and vendors Benefits Prestaciones de LeySkills
Other
