CyberSecurity Engineer, LogRhythm | Remote, USA - Avertium Remote, United States Bookmark Share Print 484 0 0

Listing Description

Avertium is the security partner that companies turn to for end-to-end Cybersecurity solutions that attack the chaos of the cybersecurity landscape with context. By fusing together human expertise and a business-first mindset with the right combination of technology and threat intelligence, Avertium delivers a more comprehensive, more programmatic approach to cybersecurity - one that drives action on the ground and influence in the boardroom. That's why over 1,200 mid-market and enterprise-level organizations across 15 industries turn to Avertium when they want to be more efficient, more effective, and more resilient when waging today's cyber war. Show no weakness.®

Avertium is seeking a dedicated CyberSecurity Engineer for our Professional Services team. The CyberSecurity Engineer will be responsible
for serving as a trusted advisor in protecting and securing information from unauthorized access and destruction. The CyberSecurity Engineer will serve as a subject matter expert in consulting LogRhythm customers within a MSSP environment.

Responsibilities:
  • Protect customer information and information systems from unauthorized access, modification, or destruction.
  • Implement, configure, optimize, and administrate dedicated LogRhythm systems.
  • Provide custom expert security consulting services to LogRhythm customers within a dedicated Cyber Fusion Center.
  • Create, implement, and tune SIEM rulesets. 
  • Deliver formal end user product training to customers on a rotational basis.

    • Qualifications for success:
  • Required Qualifications: 
  • Bachelor's Degree in Computer Science, Information Security, Information Systems, or equivalent professional experience in information security.
  • Five years overall IT experience with at least two of those years working in Cyber Security.
  • Working knowledge of Elastic Search and SQL.
  • 2+ years technical project experience designing, developing, integrating, and implementing solutions to resolve complex technical and business issues preferred.
  • 2+ years working in an incident response setting e.g., SOC or NOC.  
  • Experience with deploying, configuring, managing, and monitoring LogRhythm.
  • Experience creating MPE Rules, AI Engine rules and GLPR’s in LogRhythm.
  • Experience with Remote Management tools such as SCCM, ConnectWise Automate.
  • Preferred Qualifications:
  • Coding experience and proficiency (e.g. Python, PowerShell, bash etc)
  • Working knowledge of Regex 
  • Working knowledge of UNIX/Linux/BSD(Centos).
  • Strong understanding of WEC/WEF and Windows administration such as group policies. 
  • Experience setting up syslog forwarding. 
  • Knowledgeable with cloud platforms such as Azure/AWS/GCP 
  • Strong written and verbal communication to document and communicate findings
  • Familiarity with MIRTE ATT&CK Framework. 
  • Technical/professional security certifications (such as: LRPA CCNP, NSE4, SANS GIAC, CISSP or vendor-specific).
  • Proficient understanding of GRC Frameworks 
  • #LI-CS1
    • In addition to a career in the challenging world of cyber security, Avertium offers competitive salaries, full benefits, unlimited paid time off, participation in 401(k), and opportunities for professional growth and development. We offer the opportunity to work with cutting-edge security technologies in a stimulating work environment.

    Avertium provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

    Listing Details

    • Citizenship: Not Provided
    • Incentives: Not Provided

     

    • Education: Not Provided
    • Travel: Not Provided
    • Telework: Not Provided

    About Us

    NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

    Useful Links

    Our Contacts

    1765 Greensboro Station Pl.
    Suite 900
    Tysons Corner Va 22102

    (703) 594-7765

    requests@ninjajobs.org
    www.ninjajobs.org
    Chat with us!