This site uses cookies. To find out more, see our Cookies Policy

InfoSec3 - Incident Response in Phoenix, AZ at MDI Group

Date Posted: 6/10/2019

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Phoenix, AZ
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
    6/10/2019

Job Description


Info-Sec Engineer III

Direct-Hire

Scottsdale, AZ 

The Information Security Engineer 3 is an experienced technical member of a dynamic cyber-security incident response team.

What you will do…       

This role enables the Incident Response team by configuring and maintaining multiple enterprise security tools, by developing new alerts for emerging TTPs used by adversaries, and by working closely with other InfoSec teams to ensure data sources are formatted and ingested effectively.

Develops and maintains Incident Response tools, logs, configs and alerts

Uses enterprise security tools to identify and respond to threats

Participates in and performs incident response activities when necessary

Assesses the production environment continuously to ensure compliance with our Information Security Policies and Standards and business needs

Maintains and tunes security technologies such as SIEM, WAF, EDR across our systems and networks

Assists in the development of standards and selection criteria to identify appropriate security solutions to support business needs and security requirements

Evaluates proposed changes that effect the technology environment to identify potential security gaps and recommends mitigating controls or options to include partnering with other teams to perform security testing

Education, Experience and Knowledge

Bachelor’s degree (B.S.) or equivalent; or four years related experience and/or training; or equivalent combination of education and experience.

Minimum of 8 years professional Information Technology experience.

Minimum of 4 years professional Information Security / Cybersecurity experience.

Previous experience deploying, configuring or maintaining enterprise class security products such as SIEM, WAF, AV, EDR, NAC, etc.

Skills

Expert understanding of enterprise networking principals, systems and associated security tools

Analytical abilities to think critically with a desire to identify and solve complex problems

Excellent communication skills; verbal, written and listening

Exemplarily interpersonal skills to interact effectively in a team-oriented office environment

Abilities

Able to work under pressure and balance work load to ensure measurable progress on multiple high priority tasks.

Ability to manage and prioritize multiple assignments supporting business as usual, user requests as well as special projects.

Able to work both independently as well as collaboratively achieving results within established timeframes with minimal supervision.

Ability and willingness to work long or late hours, based on system release and/or network update schedules

Must be able to uphold our Values & Performance Principles of collaboration, performance excellence, sense of urgency, openness to new ideas, inclusion & diversity, integrity, customer focus, and respect.

PREFERENCES

Previous experience developing/deploying custom alerts for APT or Red Team style TTPs

Creativity to configure security tools to detect hard to see bad guys

Proficiency in scripting to automate tasks or run searches a plus

Knowledge or experience with cloud security products or platforms

Information Security certifications such as: SANs, ISC2, ISACA, etc.


A GREAT PLACE FOR GREAT PEOPLE TO WORK

Search IT Jobs