Python Job: Lead Info Sec Engineer

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Job Title

Lead Information Security Engineer

Our Client is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.

Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.

Overview

The Security Operations Defense and Automation (SODA) team is looking for a Security Monitoring and Response Engineer to support and drive maturity of security products as well as contribute to supporting the remainder of the SODA security tool portfolio.

Role

In this position, you will:

Lead the design, implementation, and enforcement of security monitoring that protect systems and data

Liase with application development teams to ensure proper logging is enabled for security monitoring and audit purposes

Implement and manage endpoint and network security systems

Identify log sources needed for collection for both Security and Compliance for the SIEM

Ensure protection of specific environments based on custom-made security tool configurations

Participate in Incident Response activities

Work closely with the Security Operations Center and other teams to deploy alerts triggered by suspicious or malicious activity

All About You

Essential requirements of candidates:

Strong working knowledge of network security technologies

Strong working knowledge of endpoint security technologies

Strong understanding of TCP/IP, Mitre ATT&CK, Kill Chain, Vulnerability Management and Networking principles

Experience with Windows and Unix Based Operating Systems

Strong problem-solving skills to effectively research investigate and offer solutions to issues that are more complex and difficult in nature

Ability to work effectively in ambiguous and/or high-pressure situations

Be skilled at explaining technical problems succinctly and clearly

Be a strong, confident, and exacting writer and speaker, able to communicate your vision and roadmap effectively to a wide variety of stakeholders

Experience with Cloud Security fundamentals a plus

Experience with scripted/command languages such as PowerShell, python, ruby, bash, etc. a plus

Previous Security Operations Center experience a plus

#LI-GD1
#CplTechnology22