Senior Systems Specialist J-021

Senior Systems Specialist J-021

21 Dec
QuEST Global Engineering

21 Dec

QuEST Global Engineering


Job Description

Position Overview:

Senior Security Engineer who is an expert in one or more information security disciplines with an expertise and wide understanding of security architecture, processes, alignment to stakeholder teams, and accountability for effective measurement of security metrics. Also responsible for a broad range of responsibilities with a primary emphasis on 24/7 incident response, log analysis, threat hunting, event monitoring, effective remediation of security incidents, developing detailed cyber security designs. He/she should have prior experience in leading and executing large and technically complex security projects and initiatives and can readily lead teams of 4-6 security engineers.

Work with SOC L1 team for creating new operational guidelines, processes and procedures.

Act as a first point of escalation for SOC team, and assist with handing out work assignments to team members.

Guide and mentor L1 and L2 Lead analysts with investigation and mitigation of security threats and incidents.

Develop a clear overall understanding of the Cyber Security baseline requirements, project scope, technical requirements and solution design.

Analyze and prepare guidelines on cloud security practices and help implement security in cloud workloads.

Propose and develop new use cases and playbooks/SOPs, as well as automation for recurring incidents and incident tasks, and identify and onboard new data sources to support new threat detection and response use cases.

Configure policies on Information Security systems based on threats to the organization.

Perform deep package inspection, review system logs and correlate network data to identify security incidents and provide root cause analysis and recommendations on how to prevent future occurrences.

Assist with developing and deploying the enterprise incident response and investigation program and supporting documentation, participating in operational analysis, and investigation of actual or potential cyber incidents.

Build and prepare executive dashboards to communicate risks and incidents across the organization.

Have working knowledge in multiple versions of operating systems such as Windows/Linux administration environment to handle the logs generating from such environments.

Experience of Security Incident Management processes, excellent Log analysis and research abilities

Understanding of security concepts, exploits, and technologies - Having knowledge of various networking protocols and system internals - Should have a good understanding of attacks seen over the Internet, root cause analysis and mitigation strategies - Investigation/analysis on security incidents and events.

Should be able to effectively prioritize and execute tasks in a high-pressure environment by ensuring excellent attention to detail.

Manage and maintain SIEM platform, create new security use-cases and tune existing rule, assist with operation, configuration, monitoring and tuning, including log collection specifications and infrastructure, and data source onboarding.

Monitor information systems for security incidents and vulnerabilities; develop monitoring and visibility capabilities; report on incidents, vulnerabilities, and trends.

Respond to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interact with third-party incident responders.

Analyze trends, news and changes in threat and compliance environment with respect to organizational risk; execute plans for compliance and mitigation of risk; perform risk and compliance self-assessments, and coordinate third-party risk and compliance assessments.

Train junior analysts on incident response process and tasks. Constantly validate the processes and procedures to improve speed and accuracy.

Evaluate and recommend new and emerging techniques and technologies for building and operating secure applications, establish and maintain thorough and accurate documentation of all work.

This Candidate is responsible for day to day management of security incident and event management system in a 24x7x365 environment.

Act as mentor and lead for other team members and serve as contact point for a global 24x7x365 SOC environment.

Experience in working for Dynamic SOC environments and numerous SOC tools listed below: McAfee ESM / ACE / GTI



Sourcefire IPS / IDS




The original job offer can be found in Kit Job:

Reply to this offer

Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.

Subscribe to this job alert:
Enter Your E-mail address to receive the latest job offers for: senior systems specialist j-021
Publish a new Free Offer
Need to publish an offer? With more than 1 million unique users per month, you will find the ideal candidate for your company instantly, what are you waiting for!
Publish Now

Subscribe to this job alert