Security Engineer (Tier 3 Endpoint)

Company: New Age Technologies Inc
Location: Austin
Posted on: February 16, 2020

Job Description:

The preferred candidate will have a total of 10 years' experience in the Information Technology/ Information Security industry, with minimum of 5 years of experience as a Security Engineer configuring and maintaining Endpoint security technologies. Candidate should have strong communications skills, both written and verbal, be comfortable presenting information to teammates, customer technical personnel and AT&T Leads and Managers. This is an engineer role and the candidate must be able to demonstrate ability to install, manage and maintain endpoint security technologies in a cloud environment. Demonstrated experience in supporting endpoint security technologies as an engineer is REQUIRED. Holding vendor certifications for one or more of the following is preferred for this position: McAfee Endpoint Security, Symantec Endpoint Protection, Tanium Protect, or ESET Endpoint Protection Standard. This position is based in AUSTIN, TX, but could be done remotely( in Texas) and will support the customer s 24x7 Security Operations Center (SOC). Selected candidates must be Those authorized to work in the United States without sponsorship are encouraged to apply.s, pass a CJIS background check process, and complete basic safety and security training to meet the customer requirements. Responsibilities Provision security tools for customer. Develop and maintain configuration for one or more suite(s) of endpoint protection technologies. Help determine tactics, techniques, and procedures (TTPs) for security tools. Recommend computing environment vulnerability corrections. Conduct research, analysis, and correlation across a wide variety of all source data sets (indications and warnings). Assist in the construction of signatures which can be implemented on cyber defense network tools in response to new or observed threats within the network environment or enclave. Perform patch management for customer's endpoint security tools. Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities. Ability to work with provided security policies to design and implement network and security rules and configurations across various security platforms. Qualifying Experience and Attributes10 Years experience in IT Ability to configure and troubleshoot endpoint technologies such as antivirus, antimalware, host based intrusion prevention, virtual patching, and endpoint encryption. Holding vendor certifications for one or more of the following is preferred for this position: McAfee Endpoint Security, Symantec Endpoint Protection, Tanium Protect, or ESET Endpoint Protection Standard. Direct experience managing and troubleshooting multiple the identified endpoint security products Other industry certifications such as CISSP, GCIH, CEH, etc. are a plus. Experience managing endpoint solutions both on premise and in the cloud. Working knowledge of VMWare Solutions (vCenter and VSAN a big plus) Working knowledge of McAfee SIEM/Security Suite knowledge preferred Working knowledge of Windows Active Directory Domains Working Knowledge of various Linux OS Strong Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption). Ability to interpret the information collected by network tools (e.g. Nslookup, Ping, and Traceroute). Knowledge of computer networking concepts and protocols, and network security methodologies. Knowledge of cybersecurity and privacy principles. Knowledge of cyber threats and vulnerabilities. Knowledge of encryption algorithms, cryptography, and cryptographic key management concepts. Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists). Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins). Knowledge of incident response and handling methodologies. Knowledge of network traffic analysis methods. Knowledge of new and emerging information technology (IT) and cybersecurity technologies. Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]). Knowledge of key concepts in security management (e.g., Release Management, Patch Management). Knowledge of security system design tools, methods, and techniques. Knowledge of what constitutes a network attack and it s relationship to both threats and vulnerabilities. Knowledge of defense-in-depth principles and network security architecture. Knowledge of different types of network communication (e.g., LAN, WAN, MAN, WLAN, WWAN). Knowledge of cyber defense and information security policies, procedures, and regulations. Knowledge of the common attack vectors on the network layer. Knowledge of different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks). Knowledge of cyber attackers (e.g., script kiddies, insider threat, nation/non-nation state sponsored). Knowledge of system administration, network, and operating system hardening techniques. Knowledge of cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks). Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools. Signature implementation impact for viruses, malware, and attacks. Knowledge of packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump). Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services. Knowledge of how to use network analysis tools to identify vulnerabilities. Those authorized to work in the United States without sponsorship are encouraged to apply. and must be able to pass background check(s) - provided by Dice

Keywords: New Age Technologies Inc, Austin , Security Engineer (Tier 3 Endpoint), Engineering , Austin, Texas