What are the responsibilities and job description for the Security Detection SOC Engineer position at TEKsystems?
*Description*
We are seeking a skilled and proactive Security Detection Engineer to join our Security Operations team. This role is pivotal in identifying, analyzing, and mitigating security threats and vulnerabilities in our environment. The ideal candidate will have a deep understanding of security systems, threat detection techniques, and a strong ability to design and develop security monitoring solutions.
Key Responsibilities:
* Threat Detection and Monitoring:
o Design, implement, and maintain advanced threat detection systems, including intrusion detection/prevention systems (IDS/IPS), Security Information and Event Management (SIEM), and endpoint detection.
o Continuously monitor security alerts and logs to identify signs of malicious activity or vulnerabilities within the network.
o Develop and tune detection rules, signatures, and patterns to identify threats in real-time.
* Incident Response:
o Collaborate with the Incident Response team to analyze security incidents, identify the root cause, and work on mitigation strategies.
o Conduct forensic investigations to understand the scope and impact of security incidents.
* Security Intelligence and Automation:
o Research emerging security threats and vulnerabilities and integrate intelligence feeds into detection systems.
o Implement automation strategies for faster threat detection and response times.
* Collaboration with Other Teams:
o Work closely with IT, DevOps, and Security teams to ensure all systems are secure by design and actively monitored.
o Provide security expertise for the design and implementation of secure architecture for internal and external services.
* Reporting and Documentation:
o Document security threats, incidents, and response actions in a clear and concise manner.
o Provide regular reporting on security detection activities, including metrics on threats detected, false positives, and incidents mitigated.
* Continuous Improvement:
o Perform regular tuning and optimization of detection rules to minimize false positives and maximize detection effectiveness.
o Stay up to date on the latest security trends, tools, and methodologies, and apply them to enhance the security posture of the organization.
Required Qualifications:
* Bachelor's degree in computer science, Information Security, or a related field (or equivalent work experience).
* Basic understanding of network protocols, operating systems, and cybersecurity principles.
* Experience with common security tools such as SIEM (e.g., Splunk, ArcSight), IDS/IPS, firewalls, endpoint protection, and antivirus solutions.
* Understanding of common attack vectors (e.g., phishing, malware, DDoS) and defense mechanisms.
* Ability to analyze logs, network traffic, and system activity to identify potential threats.
Preferred Qualifications:
* Knowledge of security frameworks such as NIST, CIS, or ISO 27001.
* Certifications such as CompTIA Security , GIAC Certified Detection Analyst (GCDA), GIAC Certified Incident Handler (GCIH), Cisco CCNA Security, or other cybersecurity-related certifications are a plus.
* Strong analytical and problem-solving skills, with attention to detail.
* Good communication skills and the ability to work well in a team environment.
*Skills*
Security, SIEM, Splunk, Python, Incident Response, Threat Detection, Vulnerability Management, AWS, SOC, (python would be a plus)
*Top Skills Details*
Security,Siem,Splunk,Python,Incident Response,Threat Detection,Vulnerability Management,AWS,soc
*Pay and Benefits*
The pay range for this position is $60.00 - $70.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
* Medical, dental & vision
* Critical Illness, Accident, and Hospital
* 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
* Life Insurance (Voluntary Life & AD&D for the employee and dependents)
* Short and long-term disability
* Health Spending Account (HSA)
* Transportation benefits
* Employee Assistance Program
* Time Off/Leave (PTO, Vacation or Sick Leave)
*Workplace Type*
This is a hybrid position in Rockville,MD.
*Application Deadline*
This position is anticipated to close on Apr 4, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
We are seeking a skilled and proactive Security Detection Engineer to join our Security Operations team. This role is pivotal in identifying, analyzing, and mitigating security threats and vulnerabilities in our environment. The ideal candidate will have a deep understanding of security systems, threat detection techniques, and a strong ability to design and develop security monitoring solutions.
Key Responsibilities:
* Threat Detection and Monitoring:
o Design, implement, and maintain advanced threat detection systems, including intrusion detection/prevention systems (IDS/IPS), Security Information and Event Management (SIEM), and endpoint detection.
o Continuously monitor security alerts and logs to identify signs of malicious activity or vulnerabilities within the network.
o Develop and tune detection rules, signatures, and patterns to identify threats in real-time.
* Incident Response:
o Collaborate with the Incident Response team to analyze security incidents, identify the root cause, and work on mitigation strategies.
o Conduct forensic investigations to understand the scope and impact of security incidents.
* Security Intelligence and Automation:
o Research emerging security threats and vulnerabilities and integrate intelligence feeds into detection systems.
o Implement automation strategies for faster threat detection and response times.
* Collaboration with Other Teams:
o Work closely with IT, DevOps, and Security teams to ensure all systems are secure by design and actively monitored.
o Provide security expertise for the design and implementation of secure architecture for internal and external services.
* Reporting and Documentation:
o Document security threats, incidents, and response actions in a clear and concise manner.
o Provide regular reporting on security detection activities, including metrics on threats detected, false positives, and incidents mitigated.
* Continuous Improvement:
o Perform regular tuning and optimization of detection rules to minimize false positives and maximize detection effectiveness.
o Stay up to date on the latest security trends, tools, and methodologies, and apply them to enhance the security posture of the organization.
Required Qualifications:
* Bachelor's degree in computer science, Information Security, or a related field (or equivalent work experience).
* Basic understanding of network protocols, operating systems, and cybersecurity principles.
* Experience with common security tools such as SIEM (e.g., Splunk, ArcSight), IDS/IPS, firewalls, endpoint protection, and antivirus solutions.
* Understanding of common attack vectors (e.g., phishing, malware, DDoS) and defense mechanisms.
* Ability to analyze logs, network traffic, and system activity to identify potential threats.
Preferred Qualifications:
* Knowledge of security frameworks such as NIST, CIS, or ISO 27001.
* Certifications such as CompTIA Security , GIAC Certified Detection Analyst (GCDA), GIAC Certified Incident Handler (GCIH), Cisco CCNA Security, or other cybersecurity-related certifications are a plus.
* Strong analytical and problem-solving skills, with attention to detail.
* Good communication skills and the ability to work well in a team environment.
*Skills*
Security, SIEM, Splunk, Python, Incident Response, Threat Detection, Vulnerability Management, AWS, SOC, (python would be a plus)
*Top Skills Details*
Security,Siem,Splunk,Python,Incident Response,Threat Detection,Vulnerability Management,AWS,soc
*Pay and Benefits*
The pay range for this position is $60.00 - $70.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
* Medical, dental & vision
* Critical Illness, Accident, and Hospital
* 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
* Life Insurance (Voluntary Life & AD&D for the employee and dependents)
* Short and long-term disability
* Health Spending Account (HSA)
* Transportation benefits
* Employee Assistance Program
* Time Off/Leave (PTO, Vacation or Sick Leave)
*Workplace Type*
This is a hybrid position in Rockville,MD.
*Application Deadline*
This position is anticipated to close on Apr 4, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Salary : $60 - $70
