Security Engineer

Security is tough. Trying to get users to do the right thing, trying to get software developers to write better code, trying to explain for the thirty-eighth time the control the auditors want you to implement isn’t supported in the application you’re using are all run of the mill obstacles. And that’s just Monday morning before you’ve been able to sit down and review your IDS and SIEM alerts, do forensics on a couple PC’s you’re curious about, or review the outbound firewall policies you meant to get to last week.

At Sierra-Cedar, we’ve got some difficult challenges and need your help to solve them. We’re looking for someone who not only embraces those challenges but has the tenacity and finesse to pull it off spectacularly. Think you’re good with security now? We’ll challenge you to be better. If that statement makes your heart beat a little faster, then yes, you’re fit to be one of us.

Candidate must be located in or near the Alpharetta, GA area.  This is a full-time position, with requirements to be in the Alpharetta, GA office a few times per week.

 QUALIFICATIONS

• Experience working in a Security Operations Center (SOC) or investigating alerts/incidents on a daily/weekly basis.
• Must have a strong background in operating systems, network, applications, and information security principles.
• Must have strong project management skills.
• Convey technical concepts to managers and employees effectively.
• Develop, evaluate, and implement technical systems.
• Basic proficiency in one of the following scripting languages: PowerShell, Python, or shell scripting.
• Familiarity with the following technical and cyber defense security tools:
  • Security Information and Event Management (SIEM) systems.
  • Network and host-based Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS).
  • Network and host-based sensor and firewall technologies.
  • Network and host-based malware detection and prevention.
  • Network and host-based forensic applications.
  • Web/e-mail gateway security technologies.
• Must be capable of providing team leadership and hands-on experience with network security, network analysis, and digital/computer forensics.

POSITION RESPONSIBILITIES

• Conduct detailed investigations and analysis of possible cyber security incidents by utilizing current incident response procedures, cyber forensic methodologies, and reverse engineering techniques.
• Support and maintain cyber threat detection and response technologies.
• Lead implementation of new technologies or processes to enhance cyber security operations.
• Conduct analysis of information technology auditing and monitoring logs to detect and identify insider threats or possible intrusions.
• Develop and implement automation processes to increase efficiency and accuracy of security operations processes.
• Design, evaluate, develop, and manage technical systems to support and maintain the security of the global corporate infrastructure 

GENERAL RESPONSIBILITIES

• Must be able to manage projects, resources, and time effectively
• Strong ability to carry out assigned administrative tasks with limited oversight
• Holistic Systems Thinking – must be able to envision how all parts of a solution interact with each other, existing systems architecture, and the solution itself
• Ability to think “outside the box” when developing solutions
• Research, compare and evaluate software and hardware – full life cycle, from initial search to install, configuration, process development, and delivery
• Speaks clearly and persuasively in positive or negative situations. Listens and gets clarification. Responds well to questions and participates in meetings.
• Looks for ways to improve and promote quality. Demonstrates accuracy and thoroughness
• Ability to follow policies and procedures. Completes administrative tasks correctly and on time.
• Display willingness to make decisions. Exhibit sound and accurate judgment. Support and explain the reasoning for decisions. 
• Demonstrates leadership and foster collaborative team approach – interacts well with front line and management providing consultation and expert advice on systems related topics
• Ability to communicate effectively with other employees, from executives to co-workers, within and across teams
• Ability to document and present information in a clear and concise manner to cross-operational teams and executive management 
• Attend vendor technology briefings to understand potential uses of new technologies

EXPERIENCE AND EDUCATION

• Bachelor’s Degree or higher education is required.
• Experience in a SOC or endpoint forensics and incident investigation role
• 2 years of experience in one or more of the following scripting languages: PowerShell, Python, or shell scripting
• Experience with Splunk is a plus but not required
• At least one information security certification from a security vendor such as those from ISACA, GIAC, OpenText or ISC2
• Industry affiliations such as ISSA, DSCI, InfraGard, GIAC, etc. are preferred
• Experience operating in a datacenter, service provider, AWS, or similar high availability environment

ABOUT SIERRA-CEDAR

Sierra-Cedar delivers industry-focused client success by providing consulting, technical, and managed services for the deployment, management, and optimization of next-generation applications and technology. We offer a competitive benefits package including 401(k), Health, Disability, and Life. Sierra-Cedar is an Equal Opportunity Employer.

#LI-Hybrid