Senior SecOps Engineer
Company: IDIQ
Location: Temecula
Posted on: May 16, 2022
|
|
Job Description:
FULL TIME SALARY + Health Benefits + Paid Holidays + 401K
retirement + Paid Time Off (PTO) and more!!ABOUT US:The Identity
Intelligence Group known as IDIQ is currently recruiting for a
Senior SecOps Engineer. IDIQ is a privately-owned company that has
been in business since 2009. We provide identity theft and credit
reporting services to consumers nationwide under our brands such as
IdentityIQ, CreditScoreIQ and MyScoreIQ. Our company is currently
ranked in the top 5 in our industry and has been honored as a
Top-10 Ranked Company by BestCompany.com, earned the 2019 Stevie
Bronze Winner, and the Enterprise Security Top 10 Fraud and Breach
Protection Solution Provider for 2019. We have been recognized on
TV, online, and radio by shows such as Modern Living with Kathy
Ireland. To learn more about our flagship service visit our website
at IdentityIQ.com. ESSENTIAL FUNCTIONS AND RESPONSIBILITIES:At
IDIQ, the Senior SecOps Engineer, will be responsible for
protecting the confidentiality, availability, and integrity of
information assets on premise and in cloud environments such as GCP
and Azure. The ideal candidate will have multiple years of
experience in managing cloud infrastructure, deploying/maintaining
security monitoring solutions, automation, vulnerability management
and other SecOps skills in compliance driven environments. This
position will collaborate with Engineering and DevOps teams to
analyze and perform event correlation, create dashboards and
reporting content, troubleshoot, and remediate security issues. You
will act as an SME and conduct research and development activities;
performing due diligence activities to identify, evaluate, and
validate security technologies needed or required to meet the
security and business goals of IDIQ and the Security Operations. We
utilize various (in place) tools such as AlertLogic, Veracode,
Elastic, Imperva, O365 Security, etc. Must possess a very
analytical, detail-oriented mindset and approach to reviewing
security alerts regardless of their severity. Role
Responsibilities:Develop and maintain security strategy; ensure
security strategy covers prevention along with detection and
responseBuild and implement security controls for our platform and
infrastructure, with a focus on security and complianceCollaborate
with management to design, implement, and test Ransomware Readiness
& Response PlanCollaborate with management to establish and test
incident response plansCollaborate with management to identify &
manage IDIQ, and partners organizational RISK and
vulnerabilitiesCollaborating with development teams to
reduce/remove risks within the design and implementation phasesAct
as an SME in security best practices, risk, vulnerability,
compliance, regulatory, and change management frameworks; maintain
awareness and knowledge of security standards, practices,
procedures, and methodologies.Responsible for actively monitoring
and responding to alerts from various security tools Generate
weekly SecOps reports; review weekly priority incidents and
remediationServing as a consultant to team members on security
vulnerabilities and their corresponding remediations, ensuring
security vulnerability scan outputs are reviewed and appropriate
actions are takenLeading remediation of security incidents, working
with the organization to prioritize and remediate appropriately;
Investigate and respond to any security incidentsOversee PCI
compliance and ensuring a successful PCI audit PASS; work with
auditor to submit and remediate any PCI compliance
requirements.Participates in user training as appropriate, on new
or revised systems/applicationsWORK EXPERIENCE: 5 years of
experience in technical aspects of cloud, applications, web or
mobile5 years of experience in IT security functionsB.S. in
Information Technology, Computer Science (or related
field)Knowledge and understanding of threat landscapesKnowledge of
financial or banking technology control requirements such as
PCIKnowledge of cloud identity and authentication methodologies
(Kerberos, SAML, OAuth, MFA)Knowledge of cloud platform Role Based
Access Control and IAM policies/capabilitiesPREFERRED SKILLS AND
EXPERIENCE: Hands-on-experience with SIEMs, Penetration Testing
tools, Deceptive tools, FirewallsStrong knowledge of industry
standards as they relate to Cloud and Application security
management to include ISO, NIST, and Cloud Security Alliance
(CSA)Self-motivated with the ability to work independently and as a
team member with minimal directionDeep understanding of network
attacks, DDoS, Phishing, email protocols/security/spam, encryption,
authentication, logging and log analysis, IP and device reputation,
and security rules and policiesExcellent oral and written
communication skills. Ability to read/speak/write at a high level.
The role requires high level written communication
skills.Experience in deployment, management, and configuration, of
NSM, MDR, EDR, XDR, UEM, MDM, NAC, Application Control, Phishing
and Vulnerability Management solutionsOperational level experience
in these domains: security engineering, alert triaging, rule
writing, incident response, DFIR, threat intelligence and
management, vulnerability management, and security control
testingKnowledge of security operations across hosting environments
(including Cloud)Experience establishing security practices,
working with DevOps/SecOps methodologies and processesExperience
implementing security monitoring, logging, and alerting (GCP,
Azure, O365, onpremise, etc.)Experience with securing Linux/UNIX
Windows servers, MS SQL, MySQL, PHP, Apache, IIS.POSITION
DETAILS:This is an exempt position (40 hours+ per week) and is not
eligible for overtime. You will participate in a Managed Objective
Bonus program of 10%. Days of work are Monday through Friday 8:00
am to 5:00 pm or as scheduled by your supervisor. PM22 BENEFITS AND
PERKSIDIQ makes available comprehensive benefits including 100%
employee medical options, 50% dental and vision (for employee only,
dependent coverage available). Other benefits offered include paid
time off, life insurance, short-term disability, long-term
disability, and a 401k program with employer match. We work in a
casual dress attire environment. Enjoy friendly competition with
ping-pong tournaments, pool games, and more.AAP/EEO Statement:
Identity Intelligence Group, LLC dba IDIQ does not tolerate
discrimination or harassment of employees or applicants. The
Company makes employment decisions without regard to actual or
perceived: race (including hair texture or protected hairstyles,
e.g. braids, locks, and twists), color, religion, religious creed
(including religious dress and grooming practices), national origin
(including language use restrictions), ancestry, citizenship,
disability (mental and physical) including HIV and AIDS, medical
condition (including cancer and genetic characteristics), genetic
information, marital status, sex (including pregnancy, childbirth,
breastfeeding, or related medical conditions), gender, gender
identity, gender expression, age (40 years and over), sexual
orientation, veteran and/or military status, family and medical
leave status, domestic violence victim status, political
affiliation, and any other status protected by federal, state, or
local law.BUSINESS OFFICE ENVIRONMENT: This position operates in a
professional office environment. Office environment can vary with
noise levels and stress, from low to moderate.PHYSICAL
REQUIREMENTS: The physical demands described here are
representative of those that must be met by an employee to
successfully perform the essential functions of this job. While
performing the duties of this job, the employee is regularly
required to talk or hear. The employee frequently is required to
stand; sit; walk; use hands to finger, handle or feel; and reach
with hands and arms. The employee is regularly required to push,
move, lift or otherwise bear 10-30lbs. Applications may include but
are not limited to repetitive work using a computer keyboard, mouse
and headphones while sitting and/or standing at an assigned work
desk area.Powered by JazzHRPI177653653
Keywords: IDIQ, Corona , Senior SecOps Engineer, Engineering , Temecula, California
Click
here to apply!
|