Threat Level: green Handler on Duty: Remco Verhoef

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Security Engineer
Company Eastern Bank
Location Lynn, MA
Preferred GIAC Certifications GSEC, GCIH, GCIA
Travel 0%
Salary Not provided
URL https://easternbank.jobs.net/job/position/J3M2LT6WK14C9G1SLF4?utm_medium=email&SiteID=TNALERT_Weekly&utm_source=tn-job-recommendations&utm_campaign=member-scheduled-job-recs&documentId=J3M2LT6WK14C9G1SLF4
Contact Name Jason Lazerus
Contact Email j.lazerus/at/easternbank.com
Expires 2020-06-24

Job Description

Eastern Bank is seeking a Security Engineer who will be responsible for incident response, threat hunting, and data analysis to protect and maintain the overall security of the enterprise.

What you'll do:
Protect enterprise systems and information by promptly responding to security threats and incidents, acting individually and as part of a team to resolve issues.
Proactively hunting for threats and enacting identification, containment, and eradication measures while supporting recovery efforts.
Understanding adversarial Tactics, Techniques and Procedures (TTPs) and developing novel detection and prevention techniques across multiple environments including network, endpoint and applications, particularly through use of the bank SIEM solution.
In conjunction with senior engineers and technology management, define and drive security-based process improvements.
Creating and/or maintaining security documentation including security architecture diagrams, procedures, and Bank security standards.
Penetration testing and Vulnerability Management.
Management of Application Whitelisting product.
Analyze and respond to threats from e-mail security applications.
Analyzing cyber security incidents to solve issues and improve incident handling procedures.
Conducting research regarding the latest methods, tools, and trends in cyber threat intelligence.
Creating thorough reports and documentation of all incidents and procedures.

Requirements
Must have a deep understanding of computer intrusion activities, incident response techniques, tools, and procedures
Thorough knowledge of digital forensics methodology as well as security architecture, system administration, and networking (including TCP/IP, DNS, HTTP, SMTP)
Knowledge of operating systems including Linux/Unix and Windows
Experience with programming languages such as Python, Perl, C/C , PowerShell, etc.
Experience with security assessment tools such as NMAP, Netcat, Nessus, and Metasploit is a plus.
Excellent written and verbal communication skills
Excellent organization, time management, and attention to detail
Must be action-oriented and have a proactive approach to solving issues
Ability to work individually and as part of a team
Must be able to participate in on-call rotation