Security Engineer (Incident Response Engineer) IRC271251

Description

Our client is a high-growth SaaS company in the financial technology space that is transforming the way organizations manage critical risk, audit and compliance initiatives. We believe in empowering enterprises to manage and control risk so that their businesses are able to thrive. The Client  Security Team is responsible for protecting their customer’s audit program, so the audit program can be used to secure their enterprises.
Designed by former chief audit executives, our enterprise cloud platform is purpose-built to automate and streamline activities in ways that align with how our thousands of users think and act daily. Clients range from pre-IPO organizations to Fortune 5,000 companies, including leading organizations such as WeWork, Activision Publishing, Lions Gate Entertainment Corp., TripAdvisor, Arthur J. Gallagher & Co. and Cox Communications, among many others.

 

The candidate must be available to work night shifts, 5 days per week, with at least one of those days falling on a weekend (Saturday or Sunday)

 

 

Requirements

The client is looking for a passionate and experienced Security Engineer (Incident Response Engineer) who​ ​will​ be responsible for incident response, threat hunting, and detections engineering to protect and maintain the overall security of the enterprise. The incident response engineer will design enhancements to cloud and container security baselines, configure cloud security assessment tool(s), analyze results, identify meaningful threats, and recommend remediation actions. 

Requirements

• 3 – 5 years working experience within Information Security related fields
• BS or MS in computer science or related field
• Must have a deep understanding of computer intrusion activities, incident response techniques, tools, and procedures.
• Thorough knowledge of digital forensics methodology as well as security architecture, system administration, and networking (including TCP/IP, DNS, HTTP, SMTP)
• Knowledge of operating systems including Linux/Unix and Windows, as well as containerization/virtualization technologies including docker and kubernetes.
• Technical understanding and competence with Public Cloud platforms especially AWS and Azure
• Experience with scripting languages such as Bash, PowerShell, Python etc.
• Experience with cloud native security assessment tools such as Stackrox, Sydig, Lacework, Prisma or similar is a plus.
• Experience using SEIM solutions required, and experience with security data lakes preferred.
• Excellent written and verbal communication skills
• Excellent organization, time management, and attention to detail
• Must be action-oriented and have a proactive approach to solving issues
• Certifications: GCFA, GCIH, GCFE, GNFA, GREM, GCCC
• Ability to work within an on-call shift rotation

Job responsibilities

Responsibilities:

• Perform Security Monitoring and promptly respond to security threats and incidents, acting individually and as part of a team to resolve issues.
• Partnering with Security Engineering to build, maintain and improve visibility/detection capabilities and scalable monitoring platforms to identify and report security issues and threats.
• Proactively hunting for threats and enacting identification, containment, and eradication measures while supporting recovery efforts.
• Proactively creating custom detections, and configuring solutions to ensure top risks and threats can be more easily identified.
• Analyzing cyber security incidents to solve issues and improve incident handling procedures.
• Coordinating with third-party partners assisting with Incident Response, including MSSPs, Digital Forensics and Incident Management support partners.
• Creating thorough reports and documentation of all incidents and procedures; presenting findings to team and leadership on a routine basis
• Assist with other Security Compliance activities as required

What we offer

Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you’ll experience an inclusive culture of acceptance and belonging, where you’ll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders. 

Learning and development. We are committed to your continuous learning and development. You’ll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally.

Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you’ll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what’s possible and bring new solutions to market. In the process, you’ll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today.

Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way!

High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you’re placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do.

About GlobalLogic

GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services.