Security Engineer

Seeking a Security Engineer for an opportunity in Columbia, SC.

Job description:

• The Security Engineer should be an expert in security administration and security continuous monitoring.
• In addition, they should be an expert in performing log analysis, risk analysis, incident response processes, and investigation procedures.
• This includes experience working in a Security Operations Center (SOC) and working with security tools including SIEM, EDR, and IPS/IDS.
• The Engineer should have experience with data blending and report generation.
• Some travel using a company vehicle may be required. 

Responsibilities and daily duties:

• Planning, implementing, upgrading, and monitoring security measures for the protection of computer network security and information both LAN and cloud based.
• Develop and implement security policies, procedures, and standards to protect the organization's data and assets
• Monitoring and reporting on SIEM and EDR event data.
• Maintaining records of security events investigated and incident response activities.
• Serve as a Tier III security support on the organization’s security team.
• Conduct security assessments of systems, networks, and applications to identify vulnerabilities and risks.
• Work with and provide mentorship to other information security team members on security strategies, processes, response, and technologies.
• Respond to security incidents and breaches, and work to mitigate the impact and prevent future incidents.
• Provides incident response support, threat assessment, and computer forensic investigations.
• Coordinate and assist with other Information Technology functions/teams to accomplish the organization’s security objectives.
• Creating risk analysis documents when reviewing system functional specifications including use cases, activity, sequence, data flow, collaboration, and diagrams.
• Create security report using complex SQL queries, API integrations, and Power BI.
• Knowledge of Blue Team tools such as SCAP workbench, vulnerability scanning, and hardening techniques.
• Knowledge of Red Team tools such as Nmap, Wireshark, Metasploit, and password crackers. 

Required knowledge, skills, and abilities:

• SIEM, EDR IPS/IDS experience
• Incident Response experience
• Security documentation
• SQL
• C/C
• Red Team experience
• Blue Team experience
• Python
• PowerShell
• Office 365 Security Administration 

Preferred:

• Preference will be given to experienced Security Operation Center (SOC) security analyst.
• SIEM/Log Analyst experience.
• SQL/Scripting (reports and automation) experience. 

Preferred certifications:

• Security
• CySa
• Pen
• CASP
• CEH
• SSCP
• CCSP
• CISSP 

Required education/equivalency:

• Bachelor’s or higher degree in Computer Science or other quantitative discipline;
• OR, 4 years of information security experience.