|Company||The Wendy's Company|
|Preferred GIAC Certifications||GSEC, GCIH, GCED, GMON|
The Information Security Engineer role is tasked with implementing, configuring, and monitoring multiple defensive security systems, controls, and processes to help ensure that the Wendy’s company, franchisees, and brand are protected from cyber threats. As a member of the Threat and Vulnerability Management team, this role configures, tunes, documents and monitors multiple defensive security tools including (but not limited to):
Security Information and Event Management (SIEM)
Endpoint Security Tools
Endpoint Detection and Response (EDR)
Vulnerability Scanning and Management
Threat Intelligence Sources
Security Orchestration Automation and Response (SOAR)
Specific Responsibilities Include
*Implement and configure multiple defensive security tools including SIEM, EDR, SOAR, and Endpoint Security tools, tuning alarm rules where necessary to ensure high quality data is available. Triage, investigate, respond to events and alarms and create and update standard operating procedure documentation, providing guidance to junior team members.
*Identify opportunities to improve team efficiency by automating processes via scripting or other automation tools.
*Analyze Threat Intelligence data from multiple sources for potential threats to the company, franchisees, and brand, providing detailed analysis and recommendations for threat mitigation, coordinating with business partners through the mitigation life cycle to ensure threats are properly mitigated.
*Participate and direct in tabletop simulations, “purple team” exercises, and similar events to test the defensive security tools, process and procedures.
This position will be based at The Wendy's Company headquarters in Dublin, a suburb of Columbus, OH. The Wendy's system includes more than 6,500 franchise and Company restaurants in the U.S. and 25 other countries and U.S. territories worldwide.
Not familiar with Columbus? Visit www.liveworkplaycolumbus.com
Education / Experience
*A current information security certification like GIAC/SANS GSEC, CompTIA Security+ (Sec+), CompTIA Cybersecurity Analyst (CySA+), EC-Council CEH, etc. preferred, but not required.
*Experience with one or more information security tool such as: SIEM (LogRhythm/Splunk/Elastic/etc.), Endpoint Security product (Symantec SEP/McAfee Endpoint Security/etc.), EDR (Carbon Black/FireEye/etc.), Vulnerability Scanning (Nessus/Tenable.io/Qualys/etc.).
*Experience working in a Security Operations Center environment
Wendy's is an equal employment opportunity employer who may provide reasonable accommodation to enable individuals with disabilities to perform the essential functions of the job.
Please note that the Wendy's Company does not accept unsolicited résumé’s from recruiters or employment agencies. In the absence of a signed Master Service Agreement, and specific approval to submit résumé’s to an approved requisition, the Wendy's company will not consider or approve payment regarding recruiter fees or referral compensations.