Secops Infra Engineer

Job Description – SecOps Infrastructure Engineer
Responsibilities:

• Administer and maintain security products (web application firewall, IDS, (h)IPS, EDR, phishing training, vulnerability management, SIEM, etc)
• Conduct routine maintenance for SecOps servers (patching, hardening, upgrades, etc.) and deploy new servers as needed.
• Own Security Operations Infrastructure and interface with other operational teams around the organization.
• Act as a core member of the Incident Response Team, triaging, responding to and reporting incidents and associated metrics.
• Conduct routine log review of information security events, investigating and responding as necessary.
• Participate in on-call rotation.
• Additional Roles and Responsibilities:

o Maintain a comprehensive understanding of our information systems.
o Work closely with the multiple operation teams to implement and enforce our policy.
o Conduct risk-based evaluation of policy exception requests.
o Monitor for triage and track remediation of vulnerabilities in our systems and networks.

Required Skills:

• Knowledge of endpoint and server operating systems (e.g. Linux, Windows, macOS) and relevant security risks, controls, and vulnerabilities.
• Strong knowledge of networking and network security fundamentals.
• Practical knowledge of enterprise security tools (anti-malware, firewalls, IDS/IPS, email monitoring, two-factor authentication, SIEM, etc.).
• Familiarity with AWS environments and AWS security tools.
• Familiarity with vulnerability management concepts, such as CVE and CVSS.
• Knowledge of and experience with compliance/remediation efforts of relevant domestic and international security standards and best practices such as India DOT requirements, PCI-DSS, GDPR, SOC2, HITRUST, etc.
• Scripting experience, python preferred.
• Infrastructure as code experience preferred.
• Familiarity with cloud computing environments and applications in a security context strongly preferred.
• Ability to quickly change priorities and handle simultaneous tasks.
• Excellent oral and written communications.

Education/Pre-requisites:

• 4 or more years of experience in the information security field.
• BS degree in Computer Science, Cyber Security, Information Technology (or related discipline).
• Graduate degree in Information Assurance (or related discipline) or equivalent formal training and experience in Information Security preferred.
• GIAC or OffSec certifications preferred.