This document contains descriptions of several cyber security engineering roles including:
- A cyber security engineering manager role focused on Windows systems, endpoint forensics, security technologies, programming, and problem solving.
- A cyber security engineering senior analyst role providing lifecycle management of security tools, improving processes, incident response support, and reporting.
- A cyber security engineering role requiring Linux/Windows scripting experience, system integration, and understanding of compliance monitoring solutions.
- A director of product security engineering role leading security initiatives across organizations to ensure appropriate security in new products and features and resolve issues.
This document contains descriptions of several cyber security engineering roles including:
- A cyber security engineering manager role focused on Windows systems, endpoint forensics, security technologies, programming, and problem solving.
- A cyber security engineering senior analyst role providing lifecycle management of security tools, improving processes, incident response support, and reporting.
- A cyber security engineering role requiring Linux/Windows scripting experience, system integration, and understanding of compliance monitoring solutions.
- A director of product security engineering role leading security initiatives across organizations to ensure appropriate security in new products and features and resolve issues.
This document contains descriptions of several cyber security engineering roles including:
- A cyber security engineering manager role focused on Windows systems, endpoint forensics, security technologies, programming, and problem solving.
- A cyber security engineering senior analyst role providing lifecycle management of security tools, improving processes, incident response support, and reporting.
- A cyber security engineering role requiring Linux/Windows scripting experience, system integration, and understanding of compliance monitoring solutions.
- A director of product security engineering role leading security initiatives across organizations to ensure appropriate security in new products and features and resolve issues.
Endpoint forensics Breach indicators; and, Leveraging Information and IT Security acumen, emphasizing the development of visual and written materials that can be delivered to non-technical business leadership Learning quickly about new security technologies, the implementation requirements of those security technologies, and how to integrate those security technologies into a larger solution Developing tools and/or programs utilizing programming and scripting techniques, leveraging at least one of the following environments--Perl, Python, Ruby, shell, C, C++, Java Utilizing logging and/or monitoring solutions, such as SNORT, SourceFire, RSA Netwitness, RSA Security Analytics, RSA enVision, EnCase Enterprise, FireEye, McAfee ePO, Hadoop, Splunk Utilizing creative problem-solving, written and oral communication skills to conduct research on and deliver results of pertinent technical matters Planning, maintaining and improving security technology, such as network packet capture, intrusion detection, security information and event management, and endpoint malware and/or security solutions; and, Adapting to ever-changing schedules and work assignments, including a willingness to travel (possibly globally), working extended hours; and, working effectively as part of a team, yet function well with independent responsibilities
Providing cradle-to-grave lifecycle management of cyber security toolsets consumed by peer
functions within the Information Security program. This includes designing, planning, acquisition, inventory, process documentation, deployment, administration, maintenance, configuration change management, monitoring, troubleshooting, capacity estimation, status and service metrics reporting, decommission and other service assurance activities Improving the service level for security engineering by identifying and implementing process and technology improvements. This includes expanding the use and automation of performance- and capability- monitoring tools to improve the availability and performance of toolsets as an enabler for detection of specific business use cases or changes in threat landscape, security incident response, or security analytics Providing second-level incident response support as toolset-specific Subject Matter Experts for security events including but not limited to intrusion detection, malware infections, denial of service attacks, privileged account misuse and network breaches Recommending additional use cases and incident indicators to the Operations team for implementation in cyber security toolsets. Additionally, configuring approved use cases in cyber security toolsets Creating and maintaining comprehensive system and service delivery documentation for all aspects of cyber security toolsets and their service lifecycle
Classification | NSB Use Only
Supporting integration with the firm’s Managed Security Services Provider (MSSP) services, and distributed cyber security toolsets managed by firm asset owners. This may including leveraging existing technologies within the organization, programming, scripting, or other software and system integration work Providing reporting and metrics around cyber security toolsets by designing dashboards for toolset consumers, asset owners and management consumption Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred. Industry certifications such as CISSP/SSCP or GIAC/GSEC or RSA/CSE or RHCE a plus Minimum three years of security engineering and technical solution integration experience; preferably within a professional services firm or large enterprise environment Significant and demonstrable understanding of linux, big data map/reduce/no-sql databases, relational database, traditional and software-defined networking models, ipv4 and ipv6 networking, desktop and server technologies, including experience with network intrusion methods, network containment, segregation techniques and technologies such as Firewalls, Web Proxies/Secure Web Gateways, Intrusion Detection and Protection Systems (IDPS) Experience with SIEM technologies, log harvesting/routing/management tools, security analytics platforms, network recording and forensic offerings. Additional cyber security toolsets, including fraud monitoring, data leakage prevention, and privileged access monitoring a plus
Join a team of Engineers responsible for security compliance monitoring solutions (Tripwire, Splunk, etc) Writing of complex WINDOWS/LINUX/UNIX shell scripts, PowerShell, Packaging, Integration System engineering and system integration in corporate environments Some programming experience Good understanding of IT infrastructure as well as IT security domains Understanding of security compliance monitoring solutions (e.g. Tripwire, Splunk)
Leads security initiatives across organizational boundaries to support new products, new features and resolve issues Guide threat analysis, static code analysis, training, and other continuous efforts Ensures solutions include appropriate security requirements and technology Reviews and risk rates security issues and supports management of gating and blocking security issues Supports security assurance, auditing and investigations Mentors others in relevant security technologies and implementation architecture Works with technical teams, business teams and stakeholders to define security requirements Manage third party security technology across multiple platforms and products
Classification | NSB Use Only
11+ years experience 5+ years experience working in security technologies Good natured and positive with people Must have strong leadership skills Ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity
Job Description Information Security Specialist Number of Position: One Duty Station: Addis Ababa (ICAP HO) Job Summary: The Information Security Specialist Is Responsible For Consulting Health