Senior SecOps Engineer

Company: IDIQ
Location: Temecula
Posted on: May 16, 2022

Job Description:

FULL TIME SALARY + Health Benefits + Paid Holidays + 401K retirement + Paid Time Off (PTO) and more!!ABOUT US:The Identity Intelligence Group known as IDIQ is currently recruiting for a Senior SecOps Engineer. IDIQ is a privately-owned company that has been in business since 2009. We provide identity theft and credit reporting services to consumers nationwide under our brands such as IdentityIQ, CreditScoreIQ and MyScoreIQ. Our company is currently ranked in the top 5 in our industry and has been honored as a Top-10 Ranked Company by BestCompany.com, earned the 2019 Stevie Bronze Winner, and the Enterprise Security Top 10 Fraud and Breach Protection Solution Provider for 2019. We have been recognized on TV, online, and radio by shows such as Modern Living with Kathy Ireland. To learn more about our flagship service visit our website at IdentityIQ.com. ESSENTIAL FUNCTIONS AND RESPONSIBILITIES:At IDIQ, the Senior SecOps Engineer, will be responsible for protecting the confidentiality, availability, and integrity of information assets on premise and in cloud environments such as GCP and Azure. The ideal candidate will have multiple years of experience in managing cloud infrastructure, deploying/maintaining security monitoring solutions, automation, vulnerability management and other SecOps skills in compliance driven environments. This position will collaborate with Engineering and DevOps teams to analyze and perform event correlation, create dashboards and reporting content, troubleshoot, and remediate security issues. You will act as an SME and conduct research and development activities; performing due diligence activities to identify, evaluate, and validate security technologies needed or required to meet the security and business goals of IDIQ and the Security Operations. We utilize various (in place) tools such as AlertLogic, Veracode, Elastic, Imperva, O365 Security, etc. Must possess a very analytical, detail-oriented mindset and approach to reviewing security alerts regardless of their severity. Role Responsibilities:Develop and maintain security strategy; ensure security strategy covers prevention along with detection and responseBuild and implement security controls for our platform and infrastructure, with a focus on security and complianceCollaborate with management to design, implement, and test Ransomware Readiness & Response PlanCollaborate with management to establish and test incident response plansCollaborate with management to identify & manage IDIQ, and partners organizational RISK and vulnerabilitiesCollaborating with development teams to reduce/remove risks within the design and implementation phasesAct as an SME in security best practices, risk, vulnerability, compliance, regulatory, and change management frameworks; maintain awareness and knowledge of security standards, practices, procedures, and methodologies.Responsible for actively monitoring and responding to alerts from various security tools Generate weekly SecOps reports; review weekly priority incidents and remediationServing as a consultant to team members on security vulnerabilities and their corresponding remediations, ensuring security vulnerability scan outputs are reviewed and appropriate actions are takenLeading remediation of security incidents, working with the organization to prioritize and remediate appropriately; Investigate and respond to any security incidentsOversee PCI compliance and ensuring a successful PCI audit PASS; work with auditor to submit and remediate any PCI compliance requirements.Participates in user training as appropriate, on new or revised systems/applicationsWORK EXPERIENCE: 5 years of experience in technical aspects of cloud, applications, web or mobile5 years of experience in IT security functionsB.S. in Information Technology, Computer Science (or related field)Knowledge and understanding of threat landscapesKnowledge of financial or banking technology control requirements such as PCIKnowledge of cloud identity and authentication methodologies (Kerberos, SAML, OAuth, MFA)Knowledge of cloud platform Role Based Access Control and IAM policies/capabilitiesPREFERRED SKILLS AND EXPERIENCE: Hands-on-experience with SIEMs, Penetration Testing tools, Deceptive tools, FirewallsStrong knowledge of industry standards as they relate to Cloud and Application security management to include ISO, NIST, and Cloud Security Alliance (CSA)Self-motivated with the ability to work independently and as a team member with minimal directionDeep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policiesExcellent oral and written communication skills. Ability to read/speak/write at a high level. The role requires high level written communication skills.Experience in deployment, management, and configuration, of NSM, MDR, EDR, XDR, UEM, MDM, NAC, Application Control, Phishing and Vulnerability Management solutionsOperational level experience in these domains: security engineering, alert triaging, rule writing, incident response, DFIR, threat intelligence and management, vulnerability management, and security control testingKnowledge of security operations across hosting environments (including Cloud)Experience establishing security practices, working with DevOps/SecOps methodologies and processesExperience implementing security monitoring, logging, and alerting (GCP, Azure, O365, onpremise, etc.)Experience with securing Linux/UNIX Windows servers, MS SQL, MySQL, PHP, Apache, IIS.POSITION DETAILS:This is an exempt position (40 hours+ per week) and is not eligible for overtime. You will participate in a Managed Objective Bonus program of 10%. Days of work are Monday through Friday 8:00 am to 5:00 pm or as scheduled by your supervisor. PM22 BENEFITS AND PERKSIDIQ makes available comprehensive benefits including 100% employee medical options, 50% dental and vision (for employee only, dependent coverage available). Other benefits offered include paid time off, life insurance, short-term disability, long-term disability, and a 401k program with employer match. We work in a casual dress attire environment. Enjoy friendly competition with ping-pong tournaments, pool games, and more.AAP/EEO Statement: Identity Intelligence Group, LLC dba IDIQ does not tolerate discrimination or harassment of employees or applicants. The Company makes employment decisions without regard to actual or perceived: race (including hair texture or protected hairstyles, e.g. braids, locks, and twists), color, religion, religious creed (including religious dress and grooming practices), national origin (including language use restrictions), ancestry, citizenship, disability (mental and physical) including HIV and AIDS, medical condition (including cancer and genetic characteristics), genetic information, marital status, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), gender, gender identity, gender expression, age (40 years and over), sexual orientation, veteran and/or military status, family and medical leave status, domestic violence victim status, political affiliation, and any other status protected by federal, state, or local law.BUSINESS OFFICE ENVIRONMENT: This position operates in a professional office environment. Office environment can vary with noise levels and stress, from low to moderate.PHYSICAL REQUIREMENTS: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; sit; walk; use hands to finger, handle or feel; and reach with hands and arms. The employee is regularly required to push, move, lift or otherwise bear 10-30lbs. Applications may include but are not limited to repetitive work using a computer keyboard, mouse and headphones while sitting and/or standing at an assigned work desk area.Powered by JazzHRPI177653653

Keywords: IDIQ, Corona , Senior SecOps Engineer, Engineering , Temecula, California