Cyber Security Engineer

Tech Tammina LLC
Birmingham, United States of America
29 days ago

Role details

Contract type
Temporary to permanent
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Birmingham, United States of America

Tech stack

Azure
Cloud Computing
Configuration Management
Computer Security
File Systems
PCI Data Security Standards
Security Information and Event Management
Tripwire
Software Vulnerability Management
Mitre Att&ck
Cyber Threat Analysis
Tenable Nessus
CIS Benchmarks
Vulnerability Analysis

Job description

Cyber Security Engineer responsible for L2 security event/incident response, threat intelligence analysis, and operational support of enterprise security solutions across cloud (Azure) and on-premises environments. Tripwire FIM MANDATORY. Focus on configuration management, vulnerability management, and CIRT support. Responsibilities Incident Response & SOC

  • Respond to SOC alerts, perform L2 analysis/containment
  • Support Cyber Incident Response Team (CIRT) for attack detection
  • Document incident response playbooks for new threats
  • Produce weekly/monthly operational metrics

Configuration & File Integrity Management

  • Operate Tripwire FIM to track file system changes on critical systems
  • Manage configuration drift using scanning tools vs baselines (CIS benchmarks)
  • Work with asset custodians to remediate configuration deviations

Vulnerability Management

  • Conduct vulnerability scans using Tenable Nessus
  • Prioritize/analyze findings, coordinate remediation
  • Map threats/vulnerabilities to MITRE ATT&CK framework

Threat Intelligence

  • Collect/analyze threat intelligence using MITRE ATT&CK
  • Create intelligence products for security teams
  • Integrate logs into SIEM/threat management platform

Cloud Security (Azure)

  • Proficient Azure security monitoring and incident response
  • Azure Defender + Sentinel integration experience
  • Cloud configuration/vulnerability scanning

Requirements

  • 3+ years cyber threat/information security
  • Tripwire FIM hands-on (MANDATORY)
  • Tenable Nessus vulnerability scanning
  • Azure Security proficiency
  • Familiarity: SOX, PCI-DSS, GLBA
  • MITRE ATT&CK + STRIDE threat modeling

Apply for this position