Responsibilities:

Configuring CrowdStrike Falcon/Carbon black policies on endpoints, servers, and other devices. Deploy and configure IDS/IPS, SIEM, Vulnerability/Application scanners. Writing scripts for Linux, shell scripting, and executing API. Address, resolve E2open’s security work items and priorities. Evaluating, designing and implementing controls to improve security risks. Working with operations to deploy various security controls on servers. Reviewing and approving operational tickets related to data center security. Perform Open source SIEM security stack upgrade. Provide training and support to team members on the use of automation tools.

Requirements:

Experience with security engineering tools such as AV, intrusion detection/prevention systems, and SIEM. Experience consuming REST APIs, webhooks, SOAP APIs in general for integrations. Understanding and proven hands-on experience in SIEM concepts such as correlation, aggregation, normalization, and parsing. Ability to identify and automate common and repeatable tasks/processes. Create custom integration and scripts using APIs for various functions. Maintain comprehensive documentation of automation processes, playbooks, and integration points. Cloud security knowledge (AWS/AZure/GCP).

Personal Qualities:

Exceptional interpersonal verbal and written skills in English. Very high level of initiative, self-confidence, energy and personal integrity. Quick learner, pragmatic and ability to adapt to multiple tasks.

 

Background and Education:

Bachelor’s degree or higher from an accredited 4 year university Cloud security certification AZ-500, AWS Security specialist would be an added advantage.