Cyber Security Engineer
Tech Tammina LLC
Birmingham, United States of America
29 days ago
Role details
Contract type
Temporary to permanent Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
IntermediateJob location
Birmingham, United States of America
Tech stack
Azure
Cloud Computing
Configuration Management
Computer Security
File Systems
PCI Data Security Standards
Security Information and Event Management
Tripwire
Software Vulnerability Management
Mitre Att&ck
Cyber Threat Analysis
Tenable Nessus
CIS Benchmarks
Vulnerability Analysis
Job description
Cyber Security Engineer responsible for L2 security event/incident response, threat intelligence analysis, and operational support of enterprise security solutions across cloud (Azure) and on-premises environments. Tripwire FIM MANDATORY. Focus on configuration management, vulnerability management, and CIRT support. Responsibilities Incident Response & SOC
- Respond to SOC alerts, perform L2 analysis/containment
- Support Cyber Incident Response Team (CIRT) for attack detection
- Document incident response playbooks for new threats
- Produce weekly/monthly operational metrics
Configuration & File Integrity Management
- Operate Tripwire FIM to track file system changes on critical systems
- Manage configuration drift using scanning tools vs baselines (CIS benchmarks)
- Work with asset custodians to remediate configuration deviations
Vulnerability Management
- Conduct vulnerability scans using Tenable Nessus
- Prioritize/analyze findings, coordinate remediation
- Map threats/vulnerabilities to MITRE ATT&CK framework
Threat Intelligence
- Collect/analyze threat intelligence using MITRE ATT&CK
- Create intelligence products for security teams
- Integrate logs into SIEM/threat management platform
Cloud Security (Azure)
- Proficient Azure security monitoring and incident response
- Azure Defender + Sentinel integration experience
- Cloud configuration/vulnerability scanning
Requirements
- 3+ years cyber threat/information security
- Tripwire FIM hands-on (MANDATORY)
- Tenable Nessus vulnerability scanning
- Azure Security proficiency
- Familiarity: SOX, PCI-DSS, GLBA
- MITRE ATT&CK + STRIDE threat modeling