Job Title: Professiona Security Engineer
The Professioal Security Engineer will be responsible for the health and performance of Alert Logic appliances deployed to customer environments. Reporting to the Operational Lead of the Support Operations team, the Professional Security Engineer role serves as the Subject Matter Expert (SME) for all SOC related appliance maintenance, upgrades, and acts as the technical bridge between the SOC and Development teams.
The Professional Security Engineer will be expected to demonstrate their understanding of Alert Logic Products and Services by providing timely resolution of appliance outages and maintaining a minimum software version on appliances. Armed with a good understanding of networking and Linux command line, the Security engineer’s daily duties include responding to sensor alarms, customer tickets, or SOC analyst escalated tickets, deploying new versions of appliance software, coordinating with customers to schedule maintenance windows, and own the health of Alert Logic appliances.
Responsibilities:
- To serve as a Matter Experts (SME) for the Security Operations Center and other technical teams in the areas of network security and the Alert Logic security appliances.
- To work closely with our customers and internal teams to troubleshoot and remediate technical and security issues.
- To provide escalation point for issues related to appliance function, configuration, or updates.
- To develop and improve knowledge base articles (KBAs), and other operational documentation for the benefit of our customers and internal teams.
- Monitor virtual and physical appliances for health and performance issues. Serve as an escalation point for more advanced health and performance issues.
- Work with Security Operations Center colleagues and other technical teams to ensure that customer queries are addressed promptly and according to Standard Operating Procedures, Customer Management Processes, and always with the intent to provide World Class Customer Service
- Contribute to the continuous development of the team through documentation, direct training, and external training recommendations.
- Influence the prioritization of other teams’ tasks to ensure prompt resolution of customer affecting issues such as bugs, defects, and feature requests.
- Work with SOC Leadership to ensure that team members are appropriately coached and mentored.
- Maintaining the performance, security, and software currency of our fleet.
- Be an ambassador for Alert Logic in customer meetings, both physical and virtual including client visits, SOC tours, conferences, review calls, and customer orientations.
- Maintain familiarity with Alert Logic’s ever growing and improving catalog of products and services.
- Be a mentor to less senor members of the team
- Produce customer-facing reports and guidance documentation
Required Attributes (personal):
- Demonstrate the ability to troubleshoot and diagnose commonplace production application, system, and network issues to provide rapid remediation within a collaborative environment.
- Strong belief in ownership, from identification, through resolution and validation of operational issues.
- A team player willing to take on any task and share knowledge.
- A detail-oriented working style and a desire for continuous improvement.
- Great communication skills, including the ability to relay technical information at any level.
- Excellent customer service skills
- A passion for security.
Required Attributes (technical):
The Security Engineer should display technical expertise each of the following areas:
- Linux system administration
- Must be able to use commands in RHEL, CentOS, Debian
- Advanced working knowledge of command line tools to show processes, system configuration, log files, and statistics
- Networking administration
- Ability to troubleshoot connectivity through network commands
- Solid understanding of subnets
- Advanced knowledge of routing protocols and network frames
- Demonstrate in-depth understanding of the OSI model
- Network security configurations and controls
- General Web Application knowledge
- Understanding of HTTP
- Understanding of JSON and REST APIs
- Understanding of regex
Desired Attributes (technical):
The Security Engineer should display technical expertise in one or more of the following areas:
- Cloud architecture
- Intermediate understanding of AWS and/or Azure architecture and products
- Ability to deploy various types of virtual systems within a cloud environment
- Experience troubleshooting cloud architecture
- Programming Languages
- Basic reading and writing of one or more of the following: Python, Perl, C , Bash, Ruby
- Ability to identify bugs in code
- Experience modifying scripts using command line tools such as vim
- Demonstrate ability to identify different code languages
- Web Services
- Intermediate knowledge of popular web services including Nginx and Apache
- Ability to troubleshoot and configure web services through command line
- Experience resolving network and configuration issues in web servers
Training and Certification Requirements
For Level 2 (Professional) Engineer:
- Intermediate Linux, Network, and/or Cloud Architecture Certification (examples: LPIC2, Cisco CCNA/P, AWS SysOps Admin – Associate)
- Any level security certifications a plus
- 2 years’ experience as an it/network engineer or cloud/datacenter engineer