Know anyone for this role? – Any referrals would be greatly appreciated.

Position Title – WR74661R072015

Sr. Systems Engineer – Security – Cyber Defense - CISSP - Asset Management – Marlboro, MA Area – Excellent Package

Excellent Compensation Package – Base + Bonus + PS

Green Card or US Citizens Only – Relo possible for exceptional candidates

Company

Large, successful, and growing Boston based Investment Management Firm – Great Company – Lots of Upside – Outstanding Compensation Package – Bonus – Profit Sharing etc. Join a team oriented, collaborative, results focused environment and become part of an elite organization with great growth possibilities.

Position Summary:

The Cyber Defense team is looking for a senior security engineer for an engineering and development role. Primary responsibilities will be in engineering solutions to solve information security challenges. Likely projects will be finding ways to combine and correlate data from multiple sources, developing scripts and other tools to support investigations, overseeing the use of investigation tools, integrating threat data feeds and other sources of intelligence, working with other IT teams to provide internal Intel and assistance in support of the cyber investigations. The primary mission of the Cyber Defense Team is to understand what is normal so we can investigate the abnormal. This role is critical to the success of this mission. The ideal candidate will have an investigator’s mindset combined with strong rapid development and data integration skills. Python (or similar) programing skills and comfort with XML and JSON formatted data a must, familiarity with AWS API’s, query languages and SIEM experience is a huge plus. This role will be responsible for the build out of operational and support tools as well as building out and integration with big data analytics tools, and running POC’s of new tools/technologies

Responsibilities:

· Gather and analyze data through SIEM-like log aggregation tool

· Triage and continue to customize reports, data feeds, dashboards, and other indicators to identify anomalies that may warrant further investigation

· Big data analytics, help identify the important questions then help mine the data for the answers

· Overseeing the integration of the threat intel feeds

· Integrating the various tools into actionable intelligence

· Interface with technical and non-technical users to conduct fact-finding interviews

· Engage the Security Operations Center for assistance analyzing key events

· Coordinate with other teams and advocate for improvements to configurations or technologies

· Review changes to security rule sets

· Participate in on-call rotation for escalated security events

· Coordinate a daily follow the sun handoff status document

Required Skills and Competencies:

Technical Qualifications:

Candidates should be familiar with:

· Case management tools

· Data analytics tools such as Sumologic, Splunk, HP-ArcSight

· Knowledge of Intel tools such as Soltra Edge, OSINT and other data feeds

· Breach detection tools such CarbonBlack, RSA ECAT

· End Point Protection tools

· Knowledge of leading Proxies

· IDS/IPS tools

· DLP solutions

· Network packet capture tools

· SSL/VPN

· Wireshark

· Vulnerability scanners

Non-technical Qualifications:

· BS degree in Computer Science, Information Systems or related field

· 5 or more years of IT Security Experience

· Certified Information Systems Security (CISSP) is strongly preferred

· Strong analytical and investigative skills

· Sound decision-making skills

· Excellent written and verbal communication skills

· Ability to work in a team-oriented, fast-paced environment

· Aptitude to provide innovative solutions to problems

· Attentive to detail and self-disciplined

Keys to this Position:

1) We are seeking an Engineer that has experience developing Information Security tools.

2) This is a senior level role. A CISSP is strongly preferred.

3) Technical Requirements: Python (or similar programming), XML, JSON formatted data.

4) AWS API’s and SIEM is a plus.

5) See Other Technical Qualifications above. The right candidate will have most of these technical skills including Case Management tools, Data Analytics tools, Intel tools, Breach Detection tools, End Point Protection tools, etc.

6) Strong communication skills are required.