Position: Senior Cyber Security Engineer
Location: New Jersey
Job Description:
Position Summary
Analyst will be responsible for hunting for Cyber security threats/vulnerabilities and assisting with their remediation, maintaining/operating our portfolio of security tools, creating/maintaining runbooks and performing troubleshooting.
?
Key Responsibilities
· Provide 2nd?line support to Desktop Support team, to troubleshoot issues caused by cyber security agents running on Windows desktop and server endpoints. Agents include DLP, CASB, anti-malware, policy-based encryption and EDR
· Maintain and periodically upgrade back-end on-prem management servers for endpoint security agents
· Periodically deploy the latest cybersecurity agent versions to Windows desktop and server endpoints
· Perform threat hunting and incident response duties using SIEM tool, cybersecurity management consoles and firewall consoles
· Create Python and Powershell scripts to automate cybersecurity functions and provide reports, where required
· Create and maintain runbooks to cover day-to-day cybersecurity operations
· Create documentation to cover upgrade procedures for cybersecurity management servers, and cybersecurity agent deployment procedures to endpoints
· Review vulnerability reports and prioritize / manage remediation of most critical findings
Qualifications
· At least 4 years’ experience working in a Cybersecurity Operations and Engineering role
· Experience with managing DLP/antivirus/anti-malware/endpoint response and detection infrastructure and endpoints at enterprise level, including performing upgrades to the back-end application and deploying new agent versions to endpoints
· Experience with vulnerability management tools
· Experience with threat hunting using tools such as SIEMs, next generation firewalls, antivirus/anti-malware logs
· Experience with troubleshooting technical issues
· Experience with creating security operations runbooks
· Investigating and performing triage for cybersecurity incidents
· Experience with any of the following systems/products also a plus: scripting, enterprise antivirus management, data loss prevention, malware detection, intrusion detection/prevention, penetration testing/vulnerability scanning, web application firewall.
· Experience with Windows Server 200x, Windows 10 and Linux platforms