Cybersecurity Engineer

Description:

Our client has a long term hybrid position with paid time off and holidays and benefits for an experienced Cybersecurity Engineer to provide operational Information Security support in an enterprise environment.

This candidate will have 3 to 8 year of operational and engineering experience with information security operational work and analysis.

Candidate will work in an hybrid environment with holidays and paid time off.

Must have extensive experience in security policies, procedures, and protocols.

location: Edison, New Jersey

job type: Contract

salary: $45 - 64 per hour

work hours: 8am to 5pm

education: Bachelors

Responsibilities

Job Duties -Resolve and triage incidents in our service catalog
 

• Maintain updated process documentations
• Use ServiceNow to capture work, maintain an organized and balance workload
• Escalate issues according to procedures
• Work with other teams as needed: account provisioning, data center, network administration, etc
   

Identity and Account Assurance

Active Directory Health/Cleanup

Threat Monitoring and Detection Engineering

Threat Command Alerts

New Splunk Use Cases - detections

Canary Alerts, Extrahop Alerts

CrowdStrike Identity Alerts
 

• Threat Intelligence (applicable vulnerabilities or news)
• BloodHound
• PingCastle
• Outdated Application
   

Qualifications

Job Requirements -strong written and verbal communication skills
 

• Undergraduate degree (BS) in technology related field, e.g., computer science, EMIS, systems engineering, electrical engineering
• Self-started with exceptional follow through and time management skills
• 3 to 8 years of relevant Information Security Experience, 4+ years is a plus
• Experience with On-Premise and AWS hosting environments
• Understanding of security principles and network communication models and corresponding protocols
• Familiar with ServiceNow and system of record/workforce management tool
• Alert management experience
• Accountable for conducting phishing analysis, web proxies, endpoint detection and response, database monitoring
• Accountable for conducting security analysis or audits
• Possess high-level knowledge of assessment of Active Directory Security Group lifecycle management
• Experience in conducting industry and/or third party threat intelligence for integration into our client's environment
• Network operational knowledge and experience is required
• Demonstrated ability to create information security runbooks, knowledge management, and other process documentation; in support of daily, weekly, monthly, and quarterly reporting cadences
• Ability to adapt to the use of new tools and approaches to address continuously emerging information security threats.
   

Security skills and tools: Carbon Black, Imperva, Varonis, Tripwire, Forescout, Symantec Cloud Access Security Broker (CASB), SecureMail, Symantec WebPulse, VMRay, Symantec Web Security Service

Desired Security Certificates: Security+ from CompTIA, GIAC Security Essentials (GSEC), Certified Ethical Hacker (CEH), or other related Information Security certificates

Skills
 

• Firewall Engineering
• INFORMATION SECURITY
• Red Flags
• Threat Command Alerts
• New Splunk Use Cases - detections
• Canary Alerts
• Extrahop Alerts
• CrowdStrike Identity Alerts