Platforms Security Engineer
Hybrid Onsite, Jersey City, NJ
F2F interview is a MUST
The expectation is that the resource should be in office for 3 days a week
min 12 months hybrid contract
We are seeking a Platforms Security Engineer, who will be responsible for protecting systems with endpoint security technologies.
Focus will be Endpoint Detection Response (EDR), Anti-malware solutions and Data Loss Preventions
The desired candidate will need to bring multi-disciplinary experience including, but not limited to servers, workstations, laptops, virtual machines, thin clients, running various operating systems including Windows, Linux & UNIX. This person will work closely with the Security Operations team and report to the SVP of Platform and Mobile Security to provide support, deliver new initiatives, manage uptime and upgrades. Candidate will get the unique opportunity to help mold the platforms security capabilities and landscape.
Primary Responsibilities:
- Provide administration and operational support for endpoint security technologies
- Document all product related details in runbooks, design, and/or configuration documents
- Carry out regression testing and analysis with any endpoint security technologies
- Follow release management processes and best practices for deployment, enhancements, and upgrades.
- Work closely with Security operations center and other security groups during investigations.
- Demonstrate mastery in log file analysis, fault isolation and diagnostic/assessment actions including root cause analysis, followed by the determination and self-directed execution of corrective actions.
- Drive automation efforts to continuously monitor and maintain security posture of operating systems.
- Maintain metrics and supporting analytics on System and endpoint Security.
- Provide secondary assistance and operational support with EDR (Endpoint Detection and Response), Anti-virus solutions
- Stay current on endpoint security best practices, active threats and mitigation strategies.
- Draft & execute the strategy to enhance the investments in current technologies and drive continuous innovation with new ideas to improve and mature endpoint security posture.
- Aggregate data across disparate platforms to design and develop alerting.
- Manage a portfolio of application-related projects and directly manage select projects within that portfolio.
Qualifications:
- 5 years of demonstrable and hands experience with endpoint security technologies
- Hands on experience with DLP technologies is a MUST for this position
- Demonstrated in-depth understanding of operating system (OS) internals, the mechanics of OS exploits with preventive and detective controls
- Demonstrated experience in investigating security incidents with ability to analyze logs to uncover details of the compromise, systems involved, threat techniques etc.
- Experience with scripting like Python, PowerShell etc., is highly preferred
- Knowledge of Splunk search language is preferred.
- Experience in creating trending, metrics, and management reports
- Strong interpersonal & communication skills working with remote peers over IM, phone & video.
- Experience working within the Financial Services Industry preferred
- Demonstrated ability to provide technical direction to other peer staff members, and to train new junior staff members on the security team
- Ability to elicit confidence and build rapport across multiple disciplines.
- Self-motivated; able to learn on own initiative
- Strong skills in organizing workflow, ideas & materials
- Excellent documentation skills
- Security certifications like Ethical Hacking or other specialized endpoint security certifications are preferred
- B.S in Technology or Related area (proven experience can be used as a substitute).