Cyber Security Ops Engineer

Company: Trillium Staffing
Location: Worcester
Posted on: March 16, 2023

Job Description:

Now hiring a Cyber Security Ops Engineer for direct-hire!Trillium Technical is now seeking a Cyber Security Ops Engineer for direct-hire!

This position is a key contributor as a member of the Security Engineering & Architecture group within Cybersecurity. The role is a subject matter expert in the areas of network & infrastructure security. This position is a hands-on engineering role with technical project management responsibilities as needed.

Major Responsibilities:
--- Mitigates risk of the organization's exposure to Cybersecurity attacks through continuous engineering/tuning of Security Information and Event Management (SIEM) platforms.
--- Supports the Cybersecurity Threat Intelligence Center's (CTIC) monitoring & analysis of system/network/user activity for anomalies/intrusions/breaches.
--- Identifies technical/process deficiencies and recommends enhancements to existing telemetry and monitoring infrastructure.
--- Participates in the design, deployment, and operation of cybersecurity platforms, including integration, testing, troubleshooting, and updating/upgrading of various security tools and applications.
--- Trains and mentors team members in their areas of expertise. Develops supporting training content.
--- Develops platform-specific content and data views to support and enhance cybersecurity program goals & maturity.
--- Participates in and leads full stack risk assessments to include architecture, implementation, integration, and user related risk vectors.

Standard Staffing Level Responsibilities:
--- Complies with established departmental policies, procedures and objectives.
--- Attends variety of meetings, conferences, seminars as required or directed.
--- Demonstrates use of Quality Improvement in daily operations.
--- Complies with all health and safety regulations and requirements.
--- Respects diverse views and approaches, demonstrates Standards of Respect, and contributes to creating and maintaining an environment of professionalism, tolerance, civility and acceptance toward all employees, patients and visitors.
--- Maintains, regular, reliable, and predictable attendance.
--- Performs other similar and related duties as required or directed.

Apply now!--- Bachelor's degree in Computer Science (or related field) or commensurate work experience.
--- Certified Information Security Systems Professional (CISSP) (or ability & commitment to obtain within 2 years).

Preferred:
--- Master's degree or commensurate work experience.
--- Certified Information Security Manager (CISM) certification, Certified Information Systems Auditor (CISA) certification, SANS/GIAC (Global Information Assurance Certification) (multiple disciplines apply), or vendor platform certifications.

Experience/Skills:
Required:
--- Minimum of 6 years of experience in information technologies including cybersecurity, system administration, or network services.
--- Experience utilizing, tuning, maintaining, and extending commercial and open-source SIEM solutions.
--- Well versed in the open systems interconnection (OSI) model with proven expertise and subject matter ownership of layers 1-4.
--- Experience with initial deployment, resource tuning, asset/network profiling, and configuration of JavaScript Object Notation (JSON) and proprietary application program interface (API) facilities.
--- Experience in the creation and analysis of NetFlow, packet capture (PCAP), and other packet data formats. Ability to identify root cause (patient zero) source, propagation routes, vectors, and mechanisms from PCAP data required to arrest/contain an ongoing issue or quantify resulting damage.
--- Proficient in attribute disambiguation, context, and event timeline creation using standard open-source and commercial tools.
--- Ability to enhance the efficacy of technical controls (EDR, NDR, FW, et al) using STIX, TAXII, and CybOX intelligence sharing mechanisms.
--- Experience developing signatures for Indicators of Attack (IoA) and Indicators of Compromise (IoC) to enhance the capabilities of existing technical controls or the cleanup required for affected systems.
--- Working competency in the use of standard scripting languages such as Python, Perl, Go, et al.
--- Experience working with large data sets using standard tools and methodologies and with data visualization applications and tools such as Tableau, Power BI, or Neo4j.
--- Expertise presenting data and resulting analysis in a clear and concise manner to technical, business, and legal audiences.
--- Experience developing content as structured technical documentation.
--- Demonstrated effective verbal and written communication skills. By applying to this job, I agree to receive electronic communications including SMS text and email regarding future opportunities, referral bonus incentives, and other promotions from Trillium. You may opt out at any time from future communications by responding STOP to any electronic communication.
You may view our full privacy policy at https://trilliumstaffing.com/jobs/privacy/ .
#CBPRO

Keywords: Trillium Staffing, Worcester , Cyber Security Ops Engineer, Other , Worcester, Massachusetts