Listing Description
Job Description
The Security Engineer is responsible for enabling the technology and tools required to effectively accomplish daily tasks within a Security Operations Center.  The primary role of the SOC Security Engineer is to enable SOCs to effectively utilize technology to accomplish daily tasks.
The Security Engineer will collaborate with Mandiant Architects, Mandiant Analysts, Client Information Technology (IT) resources, as well as other business resource owners, to maintain the operational readiness and appropriate configurations of all technologies required for the client's SOC to maintain effective incident detection and response capabilities.
Candidates for this position must enjoy working as a member of a highly technical team in a rapidly changing environment, be experienced in administrating a variety of information security technologies, excited to learn new emerging technologies, and passionate about protecting customer data and corporate assets from the diverse threats facing multiple industries.
What You Will Do:
- Implement new tools and technology that can be utilized to accomplish daily tasks within the SOC
- Maintain operational readiness, patch management, and appropriate configurations of all SOC related tools and technologies, including Splunk and CrowdStrike technologies
- Improve and refine security tool rulesets, alert thresholds, and telemetry
- Implement scripts and technology to automate tasks or reduce manual processes
Qualifications
Minimum Requirements:
- 6+ Years of professional information security experience
- 3+ Years of implementing, administering, and maintaining Splunk Enterprise Security
- 3+ Years administering various security technologies such as IDS/IPS, EDR, Firewalls, Web Proxies, DLP, CASB, SIEM, DNS security, DDoS protection, and Active Directory
- 3+ years of experience working with or administering tools used in security event analysis, incident response, computer forensics, malware analysis or other areas of security operations
- 3+ years of experience with networking, including TCP/IP protocols and network topology
- Fundamental understanding of operating systems, including Windows and Linux
- Fundamental understanding of security controls for common platforms and devices, including Windows, Linux and network equipment
Desired Qualifications:
- Strong communication and listening skills, a thorough approach to complex problem solving, decision-making ability, and a high motivation towards setting and delivering "excellence"
- Ability to listen, establish relationships, gain consensus, rapidly establish credibility with and gain confidence of multiple areas across the organization
- Experience with UEBA technologies
- Experience configuring or running SOAR or automation tooling
- Working knowledge of Python, Golang, PowerShell, or other scripting languages
- Experience working with hybrid cloud infrastructure
- Understanding and framing business need and technical imperatives and inspiring confidence with a variety of internal and external stakeholders
- Demonstrate exceptional teamwork and foster collaboration within the organization
- Excellent problem-solving abilities
- Ability to document and explain technical details in a concise and understandable manner
- Demonstrated ability to be flexible, positive, and creative in a dynamic, fast paced and changing environment.
- Demonstrated aptitude and the desire to learning new technologies and services
Additional Information
As a U.S. federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire.
At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.
This is a regionally-based role that must be located in the Central Region of the US.
Listing Details
- Citizenship: Not Provided
- Incentives: Not Provided
- Education: Not Provided
- Travel: Not Provided
- Telework: Full Telecommute