Senior Information Security Engineer
Genesis10 is currently seeking a Senior Information Security Engineer for a hybrid position (3 days onsite) with a Global Financial Institution located in Charlotte, NC, Chandler, AZ, or McLean, VA. This is a contract opportunity.
In this role, you will join a Threat Disruptions team to review and correlate security logs and play a major part in phishing disruption efforts. You will be responsible for creating new logic to identify phishing attacks, leading incident response activities, and conducting technical investigations of security-related events.
Responsibilities:
- Review and correlate security logs
- Play a major role in phishing disruption efforts, including creation of new logic and procedures to identify phishing attacks
- Lead or participate in computer security incident response activities for moderately complex events
- Conduct technical investigation of security related incidents and post-incident digital forensics to identify causes and recommend future mitigation strategies
- Provide security consulting on projects for internal clients to ensure conformity with corporate information, security policy, and standards
- Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions
- Utilize subject matter knowledge in industry leading security solutions and best practices to implement components of information security
- Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
- Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Requirements:
- 4+ years of Cyber Security Research or Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work or consulting experience, training, military experience, education
- Knowledge of phishing, general cyber security, and Splunk
- Ability to conduct searches in Splunk
Desired Skills:
- Advanced Information Security technical skills
- Experience detecting and mitigating phishing attacks directed towards employees and the company brand
- Experience creating regular expressions and YARA rules
- Ability to manage complex issues and develop solutions
- Experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigations, DMARC, or cyber threat intelligence
- Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
- Certifications in one or more of the following: Global Information Assurance Certification (GIAC)
- Hands-on experience with information security tools such as an enterprise SIEM solution, IDS/IPS, endpoint security solutions, and email/web security gateways
- Experience with host and/or network log analysis as applied to incident response / threat hunting
- Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents
- Strong experience in operating system and application security hardening and best practices
- Strong investigative mindset with an attention to detail
- Advanced problem solving skills, ability to develop effective long-term solutions to complex problems
Pay range: $51.72 - $59.72 per hour
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.
If you have the described qualifications and are interested in this exciting opportunity, please apply!