As a senior security engineer in our cyber defense center you will play a pivotal role in improving our security posture through effective incident response and the management of our soar (security orchestration automation and response) and siem (security information and event management) systems. Your expertise will enable the team to efficiently handle security incidents in cloud and on-premises environments.
we offer:
what we offer
* career development
* competitive compensation and benefits
* pay transparency
* global opportunities
learn more here: provides equal employment opportunities to all employees and applicants foremployment and prohibits discrimination and harassment of any type without regard to racecolor religion age sex national origin disability status genetics protected veteran statussexual orientation gender identity or expression or any other characteristic protected byfederal state or local laws.
this policy applies to all employment terms and conditions including recruiting hiringplacement promotion termination layoff recall transfer leaves of absence compensationand training.
tasks and qualifications:
responsibilities
to be successful in thi s role your consistent record will enable you to deliver against the following key performance areas:
* setting up and continuously developing the kion cyber defense center .
* handling cyber security incidents and conducting client triage/forensic analyses of cyber-attacks
* participating in the cyber security on-call schedule to ensure security worldwide for the kion group .
* programming and script writing using java python etc.
* using soar products for the automation of security incidents and developing playbooks for automated soc operation s.
* develop ing and integrati ng security detection methods for cloud environments like azure aws gcp to mitigate risks .
* evaluating the results of security logs and distinguishing between malicious and benign activity.
* making clear and independent decisions in very stressful situations.
* analyzing and implementing information security risk management and privacy practices.
* building proactive collaborative working relationships with customers peers and key team members based on respect and partnership .
* model ing our values of integrity partnership courage and completion
qualifications:
* bachelors or masters degree or equivalent experience in a related it field preferably with a focus on cyber security.
* 3 -5 years of working experience in security operations or cyber security defense center.
* proficient programming skills particularly in pytho n .
* deep knowledge in the field of it security (firewalls edr ids/ips soar detection engineering forensic s and threat hunting).
* familiarity with soar products for the automation of security incidents including us ing playbook development for an automated soc operation.
* broad understanding in all areas of modern it infrastructure.
* knowledge in security classification frameworks like mitre or the cyber-attack kill chain.
* preferred certifications: oscp splunk or elk engineer or architect cissp giac (gsec geva gpen etc.)
* ability to travel up to 10% travel (including international)
#li-am3
required experience:
senior ic