Job Description :
Position : Sr. Security Engineer
Location : Herndon VA
Duration : 3 + months Contract to Hire
Job Description:
The Senior Security Engineer’s primary function is to manage and maintain managed security solutions associated with customer monitoring activities, through the processing and management of incident and request tickets, as they are assigned.
This includes receiving and managing escalations from SOC Analysts, Junior Engineers, customers, and other internal groups.
The Senior Security Engineer is expected to contribute to internal documentation and adherence SLA targets and requirements.
The role includes hands on troubleshooting, interfacing with clients and associates as needed to resolve complex cases, and maintaining GSO security platforms.
Senior Security Engineers are expected to participate in, and contribute to planning and implementation of strategic and operational projects in efforts to achieve overall GSO goals.
Senior Security Engineers are expected to be able to troubleshoot complex problems with little oversight, take ownership and work independently as needed to resolve customer issues.
Role Description:
Projects – Provide contributions as assigned to any/all departmental projects, as assigned by management.
Serve as primary escalation point for Tier 2 or customer incidents and requests as assigned, as well as any daily activity encountered during the daily operations of the GSO.
Act as liaison between GSO and parallel or upper tier groups to ensure resolution of escalated issues.
Case Management – Creation and regular maintenance of cases for client impacting security issues, administrative and maintenance tasks, as well as appliance issues. Senior Security Engineers are also responsible for managing Ticket/Case queue to ensure that all applicable cases are resolved within applicable SLO/SLA requirements.
Tuning and Maintenance– regularly participate in tuning and maintenance activities of all applicable GSO platforms within established guidelines and procedures.
Training and Mentoring GSO personnel as needed, or assigned by management.
System Maintenance – assisting Tier 4 team members with maintenance, tuning, and installation of security devices, as needed. Also responsible for general troubleshooting of solution failures based upon documented procedures, general knowledge, problem management or guidance by Management, Senior Security Engineering staff and vendors.
Vendor and Industry training as requested by Management.
Qualifications:
6-10 years of general IT and Networking Experience
2-4 years of Security Engineering Experience, preferably within a SOC or multi-tenant environment
Experience in Security Analysis preferred
Excellent writing and communications skills
Familiarization with a variety of information and network security monitoring tools (e.g. General SIEM concepts, Cisco IDS/IPS, Netcool, Log Logic, Imperva WAF Working knowledge of Cisco ASA and Checkpoint Firewalls)
Ability to work in a dynamic environment
Familiarization with defense-in-depth concepts
Maintain proficiency and be able to complete common tasks on a variety of security appliances applicable to the security organization as a whole, as directed by management.
Report Creation – creating temporary or permanent reports for customers, as requested.
Provide Incident descriptions and recommendations for customers, as requested or assigned by management.
Customer Training – provide customer training on self-service aspects of product offering, as assigned by management.
Contribute to creation, implementation, and maintenance of documented policies and procedures for the GSO and other departmental groups, as directed by management.
Creating and processing scheduled maintenance activities
Shift Responsibilities:
Senior Security Engineers may be assigned specific shift hours, during which they are responsible for the following activities as an escalation point for the SOC:
Daily Case Management – the Senior Security Engineer will review cases across multiple CRMs and provide any follow up that may be required.
Troubleshooting assigned solution related incidents as they are escalated to our queue(s)
Consulting with colleagues and other account stakeholders to ensure customer and solution specific processes are followed.
Maintenance activity review and implementation
Availability:
Senior Security Engineers should be readily available to provide operational support for assigned shifts and on-call as scheduled by GSO Management.
During On-Call Coverage, Senior Security Engineers should be able to actively engage in any issue escalated to them within 15 minutes of initial contact attempt.
Senior Security Engineers should be flexible for work outside of scheduled shifts or on-call assignments assigned, as requested by GSO Management, in efforts to support business directives.
Senior Security Engineers must have the ability to work remotely as on-call response may be needed during off hours
Senior Security Engineers must have the ability to work across multiple time-zones.
Specific Degree/Certifications or industry specific experience requirements:
Proficiency with various firewall/IPS/UTM related solutions (Cisco, FortiNet, Palo Alto)Proficiency with Web Application Firewalls such as Imperva and F5/Proficiency with Application Firewalls such as NetScaler
Understanding of defense in depth practices and implementation is necessary as well.
Industry Certifications:
Senior Security Engineers should possess the background and experience necessary to obtain Industry or SOC specific certifications as instructed by management.
Possible applicable certifications include, but are not limited to:
Certified Information Systems Security Professional (CISSP)
Information Systems Security Engineering Professional (CISSP-ISSEP)
ArcSight Certified Security Analyst
SourceFire Certified Security Analyst
CCNA
CCNP + Security
Ethical Hacking
GSEC
GCIH
GCIA
GPPA
GISF
GICSP