Address
Form of work
SalaryThe typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role.
Description
Job Summary:
The Sr. Cybersecurity Engineer role (Cybersecurity Detection
and Response Engineer) is an experienced role within the Liberty Mutual’s
Cybersecurity Operations Center and will work within an agile team to develop
proactive methods to detect, protect, and respond to cyber threats. This role
will work cross functionally across many security teams within the
Cybersecurity Operations Center and will report directly to the Director of the
Cybersecurity Operations Center.
Job Responsibilities:
Participates as a member of an agile team
Performs research on new methods for detecting
malicious or suspicious cyber behavior
Develops new methods for detecting cyber threats
through monitoring security controls and technology.
Develops and deploys event correlation and
risk-based methods for building detections
Develops and deploys detections in behavioral
analytics platforms
Works within Agile software development
environment supporting a SIEM & Security Orchestration and Automation platform
(SOAR)
Develops automation response and remediation
playbooks within a SOAR technology
Performs analysis to ensure quality, integrity,
and fidelity of use cases, rules, and analytics for effectiveness
Supports Incident Response teams as needed to
collect artifacts for audit and internal investigations.
Develops and deploys to popular cloud platforms
Leverages APIs to perform integration of systems
where possible
Utilizes industry standards and frameworks such
as NIST Standards, MITRE ATT&CK & Defend Framework, and the Cyber
threat Kill Chain.
Collaborates with various teams to understand
cyber detection requirements
Uses a customer centric approach to building
detections and response
Preparation, Training, and Experience
Subject matter expertise in the following areas:
Cyber Detection Engineering
Subject matter expertise in at least one of the
following areas:
Software Development, Cyber Threat Hunting,
Malware Analysis & Reverse Engineering, Cyber Threat Intelligence, Digital
Forensics & Incident Response, SOAR Development
College-level degree in Computer Science,
Computer Engineering, Information Security, or other related discipline
Active Cybersecurity certifications are
desirable (but not required) such as GCIH, GREM, GCFA, GCTI, OSCP etc.
5 years of recent experience working as a
cybersecurity professional
Previous experience working in a Cyber Security
Operations Center or similar function is desirable
Knowledge of relevant frameworks, standards, and
best practices such as NIST CSF, PCI-DSS, CIS CSCs, MITRE ATT&CK, Cyber
Kill Chain etc.
Experience with using a Security Information
Event Management (SIEM) platform
Experience with using a scripting language such
as Python or PowerShell for task automation or tool creation is desirable
Demonstrable knowledge of several of the
following areas: cybersecurity concepts, network protocols, firewalls, IDS/IPS
systems, email security, endpoint security, network security,
Windows/Linux/macOS systems, cyber threat hunting, malware analysis tools and
techniques, cyber threat intelligence, common threat actor TTPs, application
security concepts, cloud security fundamentals, Incident Response
methodologies.
Excellent oral and written communication skills.
Desirable Certifications:
Industry Security Certifications
Cloud based security certifications
Offensive security certifications
Security Solutions/Tools Certifications
Qualifications- Bachelor or Master`s degree in technical discipline or equivalent experience
- Generally, 5+ years of professional experience
- Industry cybersecurity and/or technology certifications are a plus
- Proficient in new and emerging technologies, IT concepts, strategies, and methodologies, as well as security aspects of multiple platforms, operating systems, software, communications, and network protocols
- Negotiation skills; oral and written communication skills
- Advanced consultative skills, including the ability to understand and assist in applying customer requirements
- Comfortable with agile working environments to include both SCRUM and KANBAN
- Collaboration, prioritization, and adaptability skills required
- Intermediate proficiency of operational framework capabilities to include dimensional and lateral thinking, architectural analysis, business analysis and financial disciplines, security and compliance, data integration and analysis, and computational thinking
- Advanced proficiency across social networking, application delivery, mobile competency, system and technology integration, and system software infrastructure
- Expert proficiency in workplace adaptability
At Liberty Mutual, our purpose is to help people embrace today and confidently pursue tomorrow. That's why we provide an environment focused on openness, inclusion, trust and respect. Here, you'll discover our expansive range of roles, and a workplace where we aim to help turn your passion into a rewarding profession.
Liberty Mutual has proudly been recognized as a "Great Place to Work" by Great Place to Work® US for the past several years. We were also selected as one of the "100 Best Places to Work in IT" on IDG's Insider Pro and Computerworld's 2020 list. For many years running, we have been named by Forbes as one of America's Best Employers for Women and one of America's Best Employers for New Graduates as well as one of America's Best Employers for Diversity. To learn more about our commitment to diversity and inclusion please visit: https://jobs.libertymutualgroup.com/diversity-inclusion
We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: https://LMI.co/Benefits
Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law.
Fair Chance Notices
- California
- San Francisco
- Los Angeles
- Philadelphia
