information security SME: REMOTE: 65 per hr at Remote, Remote, USA |
Email: [email protected] |
From: Jay, Brillius [email protected] Reply to: [email protected] REMOTE Long TERM Role of a Senior Information Security Engineer for support of one or more of SASE, SWG, or Data Loss Prevention (DLP) security tools. Provides subject matter expertise (SME)-level support and establishment of operational readiness for on-premises and cloud security platforms. Positions in this function are involved in monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and web-based communications and applications. Respond to alerts from information security tools and implement proactive procedures to maximize service health and performance. Report, investigate, and resolve security incidents. Recommend, develop, and implement change requests to enhance security posture and improve performance. Research security trends, new methods and techniques, to preemptively eliminate the possibility of system compromise. Contractors will be working with the SASE project initiative. Contractors will be required to help with developing the security tools full operational readiness scope. Provides support of Data Loss Prevention (DLP) or web traffic protection and experience with deployment of O365 security stack. Provides SME level support for establishing operational readiness for new cloud operations and support for ongoing DLP operations for UHG. Positions in this function are involved in monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and Web-based security. Conduct vulnerability assessments and monitor systems, network, databases and Web for potential system breaches. Respond to alerts from information security tools. Report, investigate, and resolve security incidents. Recommend and implement changes to enhance systems security and prevent unauthorized access. Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach. May oversee internal or external systems security (i.e., cloud services). Ensure that customers and users have the right access to the right systems at the right times. Job Responsibilities: Serves in an individual contributor capacity, formulating and implementing procedures and systems Serves as a senior Subject Matter Expert (SME) for approaches, procedures, and implementation of security systems Oversees the monitoring and responses to security incidents, offering expertise to ensure prompt and effective resolution Collaborates with director, managers, project managers, architects, and other technical leads to ensure continuity and communication across teams Collaborates with director, managers, and other technical personnel to ensure mitigation of risks to the company Mentors and coaches cyber security individuals to provide guidance and expertise, promoting continued integration of technological advances to further enhance security Required Qualifications: Undergraduate degree or equivalent work experience Extensive experience providing SME level support in large, highly dynamic enterprise environments o Leads troubleshooting efforts in complex issues involving multiple platforms and network flows o Operates well under pressure and urgent circumstances o Self-reliant and diligent in follow-through for assigned tasks o Pro-active and effective in cross-team collaboration o Ability to work with a geographically disperse team Moderate technical experience on one or more of the following security platforms: o SASE (CASB/SWG/VPN) o Web Proxy o DLP Extensive knowledge of networking concepts, software defined networking principles, or cloud networking Demonstrated effective communication skills o Ability to write for technical and non-technical audiences, across a variety of platforms including email, chat, Standard Operation Procedures, and knowledgebase articles o Ability to verbally communicate to wide array of audiences including non-technical customers/users, technical resources, and to leadership across all levels Preferred Qualifications Moderate level experience with SASE(CASB/SWG/VPN) o Migrating on-premise security stack to a cloud provided solution Moderate experience with DLP and data protection platforms, including one or more of the below capabilities/functions. o Interpreting requirements from stakeholder into specific detection logic o Developing advanced and accurate detection logic o Exact Data Matching across multiple vendor solutions o Data classification and tagging General experience with web proxy platforms in the form of daily operations, updates to the rules, and configuration of the platform. General experience with Identity and Access Management (IAM) topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures especially relating to Azure. General experience focusing on daily operations, support, and configuration with one or more of the below platforms: o NextGen Firewall o IPS o Advanced Malware Protection o General Programming/Scripting proficiency (i.e. Python, Perl, BASH, experience with API calls, etc.) o Packet Brokers o Linux or windows server administration o Endpoint security tools such as Firewall, EDRs, sandboxing o Networking such as basic protocols, communication, reading through packet captures, etc. o Route-Switch Moderate experience with logging, monitoring and reporting platforms such as Splunk, Grafana, Zabbix, and others. General knowledge of native security controls for popular SaaS (e.g. Box, Office, 365, ServiceNow, etc) General experience executing Executive Level presentations General experience with advanced Excel reports and pivot charts Understanding/Following ITIL frameworks for Incident, Change, and Problem Management Anticipates customers needs and proactively develops solutions to meet them Analyze performance, identify areas of concern, and formulate action plans Effective clerical/note taking skills Relevant Technical Platforms/Vendors: Netskope, Prisma, Zscaler, Symantec WSS, Defender for Cloud Apps, McAfee MVision, Cisco Cloudlock, Bitglass, Proofpoint, Symantec DLP, Digital Guardian, GTB, Trelix, FireEye, Palo Alto Networks, Fortinet, Cisco Firewall, AnyConnect, Global Protect, Checkpoint, Juniper, Cisco Route/Switch, Arista Route/Switch, F5, Gigamon, Ixia High level skills 5+ General Experience Security 2+ CASB/SASE/SWG operations 2+ CASB/SASE/SWG migrations 3+ Web Proxy operations 3+ DLP operations Solid troubleshooting skills Other Applicable Skills o 1+ Firewall operations (very nice to have) o IPS/AMP operations (very nice to have) o Load balancing (nice to have) o Packet Broker (nice to have) o Email (nice to have) o Scripting (very nice to have) o Linux/windows (nice to have) o Endpoint security (nice to have) o Route/Switch/Network Engineering (nice to have) Soft skills Communication Documentation Organization Executive level presentations (nice to have) Self-motivated - Proactive Examples for the reqs Troubleshooting experience Understanding of various ports/protocols Understanding of traffic flow Experience with Setup/Implementation/Support of a SASE/CASB/SWG environment Experience with migrating from an on-prem solution to a SASE/CASB/SWG Experience with next gen Firewalls (firewalls that handle layer4-7 inspection) Experience with how a proxy works Experience with IPS and advanced malware protection devices - (very nice to have) Experience with data loss prevention (including best practices and various domestic and possibly overseas regulations) - (very nice to have) Keywords: information technology ffive information security SME: REMOTE: 65 per hr [email protected] |
[email protected] View all |
Mon Apr 29 21:08:00 UTC 2024 |