07 Oct
Senior Cyber Threat Defense Engineer
Kansas, Topeka , 66601 Topeka USA

As we create a colorful, capable and cleaner world through chemistry, we invite you to join our team to harness the power of chemistry to shape markets, redefine industries and improve lives for billions of people around the world.HELP SHAPE THE FUTURE OF CHEMISTRY AND THE WORLDFrom the frontline to the back office, every Chemours employee is part of something bigger than themselves as together we work to create a better world through the power of our chemistry.Chemours is a $6.3 billion company with a portfolio of products and processes that enable technologies and products that people use every day in their lives. From cellular phones to lower emission vehicles, to 5G communications and clean energy from hydrogen, we’re collaborating with customers to make these innovations more capable. Simply said, we use our chemistry to change lives, shape markets, and redefine industries—one improvement at a time.Chemours is seeking a Senior Cyber Threat Defense Engineer to join our growing Cyber Fusion Center team! This position will report directly to the Head of Cyber Threat Defense & Prevention in our Wilmington, DE or Remote location.As the Senior Cyber Threat Defense Engineer, this role will serve as a technical specialist of the Cyber Threat Defense function within the Cyber Fusion Center by helping to facilitate the transformation of our current Security Operations Center (SOC) and the Chemours Incident Response Team (CIRT). This role will have significant expertise and experience in operating and optimizing technical security controls and incident / event monitoring technologies for both the Enterprise and Operational environments as well as threat intelligence and threat management expertise and must have strong skills in managing and handling complex incidents and coordinating large numbers of participants through all phases of the NIST computer security incident handling process. The candidate must have strong skills in Microsoft O365, Data Loss Prevention (DLP), threat intelligence gathering and threat hunting, operating system hardening, as well as experience with enterprise risk management and vendor relationship management.The responsibilities of the position include, but are not limited to, the following:

Lead threat intelligence gathering and management activities and continuous red team programs

Assist 24x7 SOC function by leading technical threat support leveraged by the SOC team and organizing and negotiating the allocation of company and managed service resources in a matrix structure, across time zones and national boundaries in time of Cyber crisis and peacetime in both traditional IT and OT operational environments

Collect information on emerging TTPs and threats to the organization through communication with partner institutions and other intelligence sources, open-source intelligence, industry partnerships, etc.

Continuously improve the cyber defense posture of the organization by creating, measuring and updating threat models, threat landscape reports, creating intelligence briefings, threat data automation, and threat coordination with vulnerability management lifecycle management

Lead contribution efforts for planning, design, implementation, and updating or tuning of use cases in SIEM, Threat Intelligence Platforms, and other cyber tools

Acts as the subject matter expert replicating TTPs to support Red Team functions and other areas of the Cyber Fusion Center

Define and manage KRI and KPI metrics to track and drive continuous improvement, including providing regular updates and reports to leadership

Work with multiple vendors to build strong business partnerships by managing expectations

Lead and assist with information or Cyber security projects

Create technical and high-level incident reports and threat briefs for a varied range of stakeholders

Have a strong knowledge of Operational Technologies (OT) and experience navigating complex technological environments

The following is required for this role:

3-5 years of experience in an IT role, with at least 3 in any of the following disciplines

Incident Management/Response

Penetration Testing / Adversary Emulation

Cyber Threat Intelligence

Operational Technology (OT) Security

Experience in Microsoft O365 and Defender products, Data Loss Prevention (DLP), threat intelligence gathering and threat hunting, operating system hardening, as well as experience with enterprise risk management and vendor relationship management

Working experience Detecting and analyzing incidents, and coordinating activities with other stakeholders for incident triage, eradicating threats, and incident recovery

Contribute to the integration of malware analysis, forensic investigation, and threat research into incident response and vulnerability management lifecycles, and long-term understanding of threats

Understanding of basic pen testing and red-teaming concepts with working experience performing red team operations in an enterprise environment

Working experience with Operational Technology (OT) incident detection and response

Design and implementation of advanced threat detection and response systems

Develop and maintain cyber policies, procedures, and practices

Provide guidance and training to junior security staff and other employees

The following is preferred for this role:

Certifications: Security+, CEH or equivalent

Strong understanding of the MITRE ATT&CK and Pre-ATT&CK Frameworks

Comfortable with SIEM Tools and various query languages: Sentinel (KQL), Lucene and other Linux languages, etc.

Ability to operationalize various forms of threat intelligence (to support various areas of the Cyber Fusion Center)

Conduct technical analysis against impacted systems to determine impact, scope, and recovery from active and potential cyber incidents and make recommendations on how to mitigate and improve the organizational security posture

Benefits:Competitive CompensationComprehensive Benefits Packages401(k) MatchEmployee Stock Purchase ProgramTuition ReimbursementCommuter BenefitsLearning and Development OpportunitiesStrong Inclusion and Diversity InitiativesCompany-paid Volunteer DaysWe’re a different kind of chemistry company because we see our people as our biggest assets. Instead of focusing just on what our employees do each day, we look at how they do it—by taking a different approach to talent development, employee engagement, and culture. Our goal is to empower employees to be their best selves, at Chemours and in life. And we’re proud to be Certified™ by Great Place to Work® .Learn more about Chemours and our culture by visiting Chemours.com/careers. (https://www.chemours.com/en/careers)Chemours is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, race, religion, color, gender, disability, national or ethnic origin, ancestry, marital status, family status, sexual orientation, gender identity or expression, or veteran status. Jurisdictions may have additional grounds for non-discrimination, and we comply with all applicable laws.Chemours is an E-Verify employerCandidates must be able to perform all duties listed with or without accommodationImmigration sponsorship (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status) is not currently available for this positionIn our pursuit to be the greatest place to work, we know that a critical element to enhancing our employee experience is to assure we’re operating with a solid foundation of trust. At Chemours, this means being transparent about how we pay our employees for the work that they do.Pay Range (in local currency):$105,280.00 - $164,500.00Chemours Level:26Annual Bonus Target:11%The pay range and incentives listed above is a general guideline based on the primary location of this job only and not a guarantee of total compensation. Factors considered in extending a compensation offer include (but are not limited to) responsibilities of the job, experience, knowledge, skills, and abilities, as well as internal equity, and alignment with market data. The incentive pay is dependent on business results and individual performance and subject to the terms and conditions of the specific plans.At Chemours, you will find sustainability in our vision, our business and your future. If you want to work on the leading edge of your field and have a desire to make a difference, join Chemours and discover what it means when we say "We Are Living Chemistry."A new company. A new purpose. A new commitment to customers and chemistry. We are Chemours. And even more exciting is how our employees are committed to be catalysts for better. The word “ours” is in our name intentionally. It is about our employees, our customers and our world. Our values are simple: We seek to put our customers first always. We encourage creativity and simplicity. We give you the ability to operate with the innovation and enthusiasm of an entrepreneur. We are obsessed with making our world safe and we do this all with unshakable integrity – doing what is right. See chemistry in a different way at Chemours.PLEASE USE A WEB BROWSER OTHER THAN INTERNET EXPLORER IF YOU ENCOUNTER ISSUES (CHROME, FIREFOX, SAFARI, ETC.)


Related jobs

Report job