Job Description
Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post.
Department Summary
Our Technology teams challenge the status quo and reimagine capabilities across industries. Whether through research and development, technology innovation or solution engineering, our people play vital roles in connecting consumers with the products and platforms of tomorrow.
Job Duties and Responsibilities
The main focus of the Systems Engineer for Endpoint Security is to support endpoint protection for all assets, in the cloud and on premises. As the first line of defense, our endpoint protection reports, blocks, contains threats on assets. It is, therefore, imperative all assets are identified, registered in the console and their protection policies are kept current. The systems engineer will use data analysis, threat intelligence, and cutting-edge security technologies to identify possible threats and provide policy updates to mitigate threats. The candidate must have a curious investigative mind, a passion for information security, and the ability to effectively communicate complex ideas to audiences of varied levels of knowledge.
Key Responsibilities:
Conduct research, analysis, and correlation across a wide variety of data sets to validate alerts and harden the enterprise with preventative controls
Create and adhere to process documents for policy implementation and any change management functions
Support the threat response team in their incident triage
Support the vulnerability management team in identifying assets which need coverage and subsequently working with asset owners to deploy endpoint protection on any exposed assets in a timely manner
Be a mentor and subject matter expert for other IT teams and more junior team members
Additional Qualifications/Responsibilities
Required Skills:
3 years experience in Security Operations
Excellent written and verbal communication skills
Knowledge of the incident response lifecycle and experience with cyber security investigations
Manage multiple complex assignments based on criticality in a timely and professional manner
Experience working both independently and as part of a worldwide team
U.S. citizenship required
Desired Skills:
Experience with digital forensic analysis
Experience with cyber threat intelligence
Experience with various security technologies (SIEM, SOAR, UEBA, EDR, IDS/IPS, etc.)
Experience with building and maintaining alerting across various types of security tools
Prior experience working within the following areas:
Computer Incident Response Team (CIRT)
Computer Security Incident Response Center (CSIRC)
Security Operations Center (SOC)
Knowledge of intrusion tactics, techniques, and procedures
Knowledge of cloud environment (AWS, GCP or Azure)
The following certifications are strongly desired:
CompTIA A
CompTIA Network
CompTIA Security
AWS Certified Security - Specialty
Experience with Pandas, Plotly, and Python ML Libs
Salary Ranges
Compensation: $72,400.00/Year - $118,900.00/Year