Cybersecurity Senior Engineer (2023-6903)

Cox Automotive Group is looking for a Cybersecurity Senior Engineer! The Cybersecurity Senior Engineer is responsible for a variety of objectives resulting in risk mitigation and remediation of internal & external security threats. This role performs advanced threat analysis, threat intelligence gathering & reporting, incident response activities, improves accuracy of security systems, improves existing processes, and works on Cybersecurity focused projects. This is a 6-month temporary assignment.

• Monday - Friday
• 8 hours/day 40 hours/week

Cybersecurity – Cyber Intelligence & Incident Response

• Responds to and remediates email, endpoint, threat intelligence, and network-based threats; provides forensic investigation and support.
• Provides after-hours support as needed for response activities.
• Collaborates with cross divisional and Cybersecurity teams to continuously improve security capabilities and response to threats in the most efficient and effective manner.
• Assists with projects to implement advanced technologies to prevent & identify malicious behavior within cloud environments, networks, endpoints, and email technologies.
• Operates products such as SIEM, SOAR, threat intelligence platforms, advanced email protection, EDR, cloud security products, IDS/IPS, Zero Trust tooling, and other security technologies.
• Implements and performs threat analysis utilizing industry standard frameworks (kill chain/diamond model) and techniques.
• Proposes and helps review security plans and policies to improve environmental security.
• Maintains and produces metrics, operational playbooks, process diagrams and documentation for the Cybersecurity program.
• Produces and distributes operational and tactical threat intelligence reports.
• Other duties may be assigned as needed to address new security threats facing the enterprise.

Emerging Threats Monitoring

• Obtains information and stays up to date on the latest threats and security trends in a fast and efficient way to keep enterprise environments protected.

Incident Management

• Assists in the investigation and resolution of security events and incidents.

Focus on Customers

• Promoting and living customer service as a value. Ensuring that the (internal or external) customer’s needs are a driving force behind priorities, decisions, processes, and activities.

Drive Results

• Setting high standards of performance for self and others; assuming responsibility and sense of urgency for successfully completing assignments or tasks; self-imposing standards of excellence rather than having standards imposed.

Develop Self and/or Others

• Planning and supporting the development of knowledge, skills, and abilities to fulfil current or future job responsibilities more effectively.

Champion Change

• Actively engaging and supporting change and innovation by communicating the future-state, trying new approaches, and collaborating with others to make the change successful.

Value Others

• Gaining other people’s trust by “doing the right thing”, demonstrating openness and honesty, behaving consistently, supporting an inclusive work environment, and acting in accordance with legal, moral, ethical, professional, and organizational guidelines in support of our Values.

Build Relationships

• Building, leveraging, and maintaining relationships within and across work groups.

• A minimum of 5+ years of work experience
• Working experience in a Threat Intelligence and Incident Response capacity.
• Working experience with industry standard security technologies and services such as Firewalls, VPNs, IDS/IPS, SASE, EDR, Proxy, SIEM, XDR, SOAR.
• Strong forensic experience and problem-solving ability.
• End Point Detection and Response (EDR) experience
• Security Information and Event Management (SIEM) experience
• Experience with Antivirus (AV) and Cloud Security Products
• Intrusion Detection System (IDS) experience
• Security Orchestration & Automation

Cyber Intelligence & Incident Response

• Nice to have GSEC, GCIA, GFE, GCFA, CISA, CISSP, CISM, or CIA certification(s)
• Bachelor’s degree in Computer Science degree or related field or equivalent combination of industry related professional experience and education
• Network / System Administration experience / background
• Demonstrate great teamwork and partnership with internal teams for resolution of security-based issues.
• Perform security event correlation, triage, and analysis.
• Apply security Threat Intelligence while responding to and investigating security events or Incidents.
• Identify when an application, network, system, or user has been compromised by an internal or external threat.
• Work on multiple projects to improve security capabilities.
• Exercise strong understanding of defense-in-depth security best practices.
• Apply security engineering and architecture concepts to best understand how to employ the most effective security monitoring, response, and threat reporting.
• Demonstrate effective communication of security issues and topics to management and others.
• Work well under pressure and within a high paced environment.
• Maintain operational guidelines and standards for Cybersecurity.

• This is a hybrid role for candidates local to New York - 2 days a week onsite in New Hyde Park location

• $63/hr-$68/hr

This job posting is for a temporary role as an employee of Atrium on assignment at Cox. The individual selected for this role will be offered the role as an employee of Atrium; compensation, medical benefits, fringe benefits and other terms and conditions of employment shall be presented by Atrium upon offer. The pay rate range provided is a reasonable estimate of the anticipated compensation range for this job at the time of posting. The actual pay rate will be based on a number of factors, including skills, competencies, experience, location and/or being pursued and other job-related factors permitted by law. In addition, this role will be eligible for overtime pay, in accordance with federal and state requirements

By applying for this position you agree to the Atrium Terms and Conditions. Agreeing to these terms, includes permission to use the email address and mobile phone number you provide during the application process or throughout the duration of your prospective or actual employees to notify you of job openings, profiles, articles, news, and other employment-related information, as well as to notify you of special promotions or additional products and services offered by us or our affiliates and partners (collectively, “Atrium Alerts”). Atrium Alerts may be sent by email, phone or text message. Your personal information will be safely stored in our database. Atrium does not sell your personal information to third parties. Text message and data rates may apply. To OPT OUT of text messaging or to modify your communication preferences for Atrium Alerts at any time, please contact us at privacyadministrator@atriumstaff.com.

If you do not agree with the Atrium Terms and Conditions, you can still complete your application for this position by emailing your resume to our team at coxrecruit@atriumworks.com. Please include the job title in the subject of your email.

As a woman-owned firm, Atrium values diversity. We are an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, genetic information or any other characteristic protected by law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.