Description:
Cybersecurity Researcher will serve as a subject matter expert on cloud security, Database security, wireless security, LTE/4G networking, secure and resilient network design, security policies, vulnerability management, Internet of Things (IoT), industrial control system (ICS)/SCADA security and related initiatives.
Responsibilities:
- Architect security controls
- Expert level knowledge of Identity and Access Management
- Explore new security technologies, applications, and tools
- Research policies and regulations across disciplines (e.g., Network DLP, cloud etc.)
- Research the technical details of the vulnerabilities and threats and find root cause
- Research technical details of third-party offerings and assist legal in crafting contracts
- Client and analyze weaknesses in application security controls
- Client and analyze weaknesses in cloud security controls
- Working knowledge of Proxy Web Gateway
- Establish security processes and procedures
- Maintain risk register
- Establish and maintain HIPAA and NIST compliance of network
- Analyze Network Firewalls and IPSs logs for policy violations.
- Perform security risk assessments of infrastructure, applications, cloud services, and networks
- Utilize SEIM, Armis, Extrahop and Secureworks for threat intelligence and incidence response
- Use network monitoring tools to triage incidents and perform asset management tasks
- Manage Disaster Recovery, Incident Management, and Business Continuity activities
- Lead the resolution of security incidents
- Work with vendors to integrate security platforms into infrastructure
Requirements:
- 5 years or more of Security Engineering experience in a complex enterprise environment
- Strong Identity and Access Management experience
- Should be able to utilize security frameworks like NIST and MITRE.
- Strong project management experience
- Knowledge cloud security controls and VMWare environment
- Understanding of IoT and OT security
- Ability to create reports using KRI and KPI
- High degree of confidence and briefing skills; comfortable fielding questions and articulating project/program details in front of senior leadership
- Strong cross-functional team leadership skills
- Must be able to lead projects
- Bachelor's degree in computer science, information technology or related field.
- Proficient in the use of security management tools to facilitate troubleshooting, e.g., Wireshark, NetBrain, Extrahop, NetWitness, CoreInsight etc.
- Experience in some of these application security related tools: Burp Suite, Fortify, Zimperium, Veracode, HCL AppScan tools
- Experience in Netwrix data classification and auditing tool
- Experience with Trellix EPO and Crowdstrike
- Experience with Skyhigh Proxy Gateway and CASB
- Experience with Menlo Security web and email isolation tool
- Knowledge of O365, Azure, DNS and WAF
- Strong understanding of network, application, and cloud security
- Experience with configuring DNS. Familiarity with Infoblox to maintain public facing DNS services as well as IPAM
- Understanding of the various VPN technologies
- Knowledge of security of wireless environment including controllers and Client.
- Knowledge of resilient designs to ensure high availability
- Knowledge of IPS/IDS design as standalone hardware or as a feature within firewalls
- Experience with Next Generation Firewalls including Palo alto, Fortinet, etc.
- Work with vendors, carriers, and other technical groups to implement new security controls and troubleshoot existing controls
- Any automation and coding experience is a plus