Security Engineer

Our client is seeking a Security Engineer to join their team and put your analysis, monitoring, triage, and infrastructure skills to work. Candidates who are able to work onsite on a hybrid basis in Raleigh, NC are preferred.

In this role, you will:

• Assist with the Management/Implementation of mission-critical infrastructure

• Participate in analysis of environments and come up with suggestions for improvements to

existing processes as well as provide feedback for creating new ones

• Audit environments on an ongoing basis as a means of implementing security best practices

• Act as a point of escalation for SOC analysts

• Provide mentorship to the SOC analysts as needed for help with security analysis/investigation

• Assist in the implementation and maintenance of web application security scanning

• Ability to assist with learning/piloting new tools as and when needed

Requirements:

• A strong interest in hands-on security monitoring demonstrated by work experience, academics, and security certifications

• Experience with CSPM tools

• Experience with compliance frameworks

• Experience with Jira and case management is a plus

• Experience with Azure Office 365 and SharePoint

• Basic Windows Server administration skills

• Basic Linux server administration skills

• Infra-automation & Containerization is a plus

• Familiarity with Docker, CI/CD pipelines, Kubernetes, Git, Python, and Terraform

What you’ll need to be successful:

Cloud Proficiency:

• Intermediate familiarity with AWS and Azure

• Knowledge of services like Lambda, ECR, IAM, Kubernetes, Azure Event Hubs, Microsoft Defender for Cloud, Microsoft Defender for Endpoint & Identity

• Splunk or other SIEM Experience is a plus

• Proficiency in languages such as Python and Terraform is a plus

• Familiarity with CI/CD pipelines and version control systems/processes

CSPM Tools:

• Experience with Wiz or similar tools like Prisma Cloud

• Experience with Tenable or similar tools like Qualys

• Ability to understand and analyze findings in CSPM tools

• Compliance Knowledge (NIST 800-171.2)

• Ability to identify the difference between true and false positives

Incident Response:

• Experience in handling and investigating incidents is a plus

• A strong interest in hands-on security monitoring demonstrated by work experience, academics, and security certifications

Leadership & Communication:

• Ability to take initiative in an agile environment

• A focus on customer service and customer relations

• Strong communication skills, Team player mentality.

Qualifications

The ideal candidate will have:

• Strong knowledge of security best practices inside and outside of the cloud

• Hands-on experience with SIEM tools (running queries and creating alerts) is a plus

• Excellent verbal and written communication skills as well as organizational and problem-solving skills.