Senior Information Security Engineer (Schenectady)
: $76,265.00 - $187,860.00 /year *
: Information Technology
Loading some great jobs for you...
The Information Security Engineer will work under the direction of the Chief Information Security Officer in the implementation and monitoring of security tools and solutions. This senior hands-on role requires someone with 7+ years of Information Security technical experience in a mid-size corporate environment. He/She will have a strong understanding of Firewalls, Networking, SIEM, EDR, Anti-Virus/Anti Malware tools, SOAR, VPN s, Encryption, Vulnerability Management, Proxies, VMware, Active Directory and Access Control technologies.
Day to day responsibilities:
Monitor and investigate internal and external cyber threats to the organization.
Report status, define tuning requirements, and monitor functionality of security controls.
Correlate multiple data sources and apply various analytical techniques to investigate potential security incidents.
Support tuning and iteration of tools used for monitoring, analysis, and forensics.
Monitor and analyze security vulnerabilities and propose effective and innovative remediation approaches.
Constantly learn, illustrate, and apply knowledge on the latest adversarial tactics, techniques, and procedures.
Standardize techniques and procedures, in order to promote automation.
Manage security projects and assist with integrating security and risk management best practices into business projects and initiatives.
Collaborate with colleagues to ensure that security tools support the overall security strategy.
Support the planning and execution of BHI s projects by serving as a security advisor and project team member.
Identify and promote functionality improvements in security tools and their supporting processes.
Assist in creating Information Security requirements for new products and services.
Maintain awareness of latest cyber security matter through demonstrated hunger and passion for the industry.
Must possess a strong understanding of information security best practices.
Must possess a strong understanding of Internet standards, protocols, and system internals.
Must possess a strong understanding of domain-based Windows environments.
Advanced understanding and analysis of event logs from many different devices.
Solid understanding of host/network common vulnerabilities and exploits (CVEs), attacker methodologies, techniques, tactics, and procedures (ATT&CK framework), and the tools used.
Ability to analyze output from various security tools and translate into actionable risks.
Ability to leverage both open-source and commercial tooling to resolve investigations quickly.
Ability to understand and analyze anomalies in network protocols.
Understanding of malware and associated behavior.
- provided by Dice Associated topics: cybersecurity, forensic, identity access management, idm, information technology security, phish, security engineer, security officer, threat, vulnerability
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.