19 Sep
Security Operation Principal Engineer
Texas, Irving , 75014 Irving USA

Vacancy expired!

Job Description Job Title: Security Operation Principal EngineerLocation: Fully RemoteStatus: Full-timeOur client, a leader in the entertainment industry, is looking to add a Principal Engineer, Security Operations to work with a new acquistion as they adapt to the corporate Cybersecurity platform, policies and practices. In this role you will work on a daily basis to ensure the health of security endpoints and monitoring in our cloud and on premise networks, and work to detect and prevent unauthorized incursions into our network. You will be the principal point of contact for security incident response and will assist in maintaining and secure architecture. Additionally, you will have the opportunity to drive the technical implementation of our security solutions by providing necessary guidance and technical leadership to more junior engineers.While this role does work closely with teams based in the San Francisco and Dallas, it is fully remote, so you can keep your fuzzy bunny slippers on rotation.Minimum Qualifications:

  • Bachelors or Master's Degree in a Cybersecurity or related discipline, or equivalent, relevant experience.
  • CISSP certification, with one or more other professional certifications preferred (OSCP, GSEC, GCIA, CISM, CEH, etc.)
  • 10 years' experience in Security Operations and/or the IT industry, with a preference for active DevSecOps roles
  • Expertise in secure cloud architecture and security including containers, SDN, HA, serverless compute
  • Operational experience with IaC tools like Terraform, AWS CloudFormation, or Google Cloud Deployment Manager
  • Experienced with cloud security ops and monitoring tools like AWS Guard Duty and Security Hub, or Google Security Command Center
  • Working knowledge of Windows/Unix system administration and security vulnerabilities, in particular those exploitable in ransomware attacks
Desired Qualifications:
  • Experience implementing and maintaining Zero-Trust environments
  • Working knowledge of TCP/IP and related data network protocols: TCP, ARP, ICMP, DHCP, HTTP, SNMP etc., and accompanying protocol analysis tools (Wireshark, TCPDump, etc.)
  • Solid experience with Linux system administration (RedHat, Debian, etc.)
  • Hashicorp stack: Vault, Nomad, Consul
  • Monitoring and Securing sidecar load balancing environments (Envoy/Istio)
  • Knowledge of compliance requirements PCI DSS, SOX
  • Shell scripting
  • Experience with version control systems such as GIT or SVN in a collaborative environment
  • Knowledge of fundamental networking concepts: BGP, VPNs, OSI model
  • High level of competency with Python development including OO design principles
Duties and Responsibilities:
  • Perform detailed forensics for security related incidents
  • Develop, evolve, and manage monitoring and alerting solutions to create a deep understanding of trends, anomalies, and incidents
  • Assist in architecture and planning for company wide security efforts
  • Expert on authentication paradigms: IaM policy management and Cloud KMS solutions
  • Develop and implement system hardening standards conforming to CIS benchmarks
  • Implement MSSP services such as Security Command Center, RedLock, Threat Stack, Dome9, Evident.io
  • Develop, evolve, and manage monitoring and alerting solutions to create a deep understanding of trends, anomalies, and incidents
  • Support cloud WAF solutions, user behavioral analysis tools like NuDetect and Human, and CASB solutions
  • Monitor and/or manage stateful firewalls: Juniper SRX, PaloAlto Networks, etc.
  • Deploy and maintain security endpoints like Sentinel One
  • Deploy, monitor and maintain automation solutions: Ansible, Chef, etc., and with automated SAST and DAST pipeline solutions in a mature DevOps practice
  • Deploy and manage SIEM environments: Chronicle, AlienVault, Splunk, ELK
  • Mentor junior members of your team as well as individuals in other operational groups.
  • Perform detailed forensics for security related incidents in close cooperation with centralized incident response apparatus
  • Integrate local policies with and ensure compliance to enterprise security policies and standards
  • Support penetration testing to find vulnerabilities that might be exploited by malicious third parties
  • Lead mitigation efforts in response to vulnerabilities uncovered by periodic scans
  • Support the centralized security architecture team with knowledge and insights about the infrastructure in your charge
Be a part of the ConsultNet difference. As a leading national provider of IT staffing and solutions, ConsultNet delivers exceptional services to startup, midmarket and Fortune 1000 companies across North America. Since 1996, we've partnered with clients to create rewarding opportunities for our consultants, successfully building teams that have surefire results. In the past two years alone, we have placed more than 1,500 consultants in contract, contract-to-hire, or direct placement opportunities. We understand communication is key to finding the right job that matches your skills and career goals. For us, it's not just the work that we do; it's how we do the work. Our breadth of offerings extends to multiple IT positions in major markets throughout the country, see more at - www.consultnet.com

Vacancy expired!

Subscribe for new vacancies
Report job