We are looking for an experienced SecOps (Security Operations) Engineer to join our team! This role will be responsible for ensuring the security and integrity of an organization's computer systems, networks, and data. Their primary focus is to proactively identify, analyze, and respond to security threats and incidents, as well as implement measures to prevent future security breaches.
Roles and Responsibilities:
- Monitoring and Incident Response: Monitor security events and alerts generated by various security systems, such as intrusion detection systems (IDS), security information and event management (SIEM) tools, and firewalls, particularly in the AWS Cloud model. Respond promptly to security incidents, conduct investigations, and implement appropriate remediation measures.
- Vulnerability Management: Conduct regular vulnerability assessments to identify weaknesses in the organization's systems and networks. Collaborate with system administrators and developers to ensure timely patching and remediation of vulnerabilities.
- Security Tool Management: Manage and maintain security tools and technologies, such as antivirus software, endpoint protection systems, data loss prevention (DLP) tools, and encryption systems. Configure and fine-tune these tools to optimize their effectiveness.
- Security Policies and Procedures: Develop and enforce security policies, procedures, and standards to ensure compliance with industry regulations and best practices. Educate employees about security awareness and promote a security-conscious culture within the organization.
- Security Incident Handling: Coordinate and participate in incident response efforts in the event of security breaches or cyberattacks. Work closely with cross-functional teams, including IT and management to mitigate the impact of incidents and restore normal operations.
- Threat Intelligence: Stay up to date with the latest security threats, vulnerabilities, and industry trends. Monitor threat intelligence sources, such as security advisories and forums, and apply this knowledge to enhance the organization's security posture.
- Documentation and Reporting: Maintain accurate records of security incidents, investigations, and remediation efforts. Prepare and present reports to management, highlighting key security metrics, risks, and recommendations for improvement.
Requirements:
-
Experience with the following areas in Primary Core AWS: AWS Security Hub, AWS Systems Manager, AWS Control Tower, and AWS Guard Duty
- Hands-on experience completing AWS Cloud Migrations in a large corporate environment
- Track record of creating strong remediation policies for issues that arise in the AWS Cloud environment
- Ability to build strong relationships within IT and with business stakeholders
- Understands the creation and implementation of effective workflows
- Familiar with standards, such as ISO 27001, NIST, and SOC2, and achieving and maintaining compliance.
