Security Engineer

Job Description

Job Description

Job Title : Security Engineer Level V

Job Location : San Francisco, CA

Duration : 11 Months plus

Pay Range : $120 / hr-$130 / hr on W2

Duties :

• Identify gaps in our infrastructure, and work with business partners to gain visibility through logging and detection.
• Be part of the on-call rotation to provide 24 / 7 coverage for threat detection and incident response.
• Use your coding, data analytics and investigation skills to hunt, detect and respond to insider threats.
• Write detection to detect data abuse and data exfiltration at scale.
• Build automation and detection models to support identification of anomalous activity and response activities to mitigate insider threats at scale.
• Hunt for insider threats in our corporate and production environments to proactively identify anomalous activity.
• Work side by side with our engineering teams to build advanced detection solutions to help keep systems and information safe, and partner closely with our Human Resources and Legal teams to carry out complex investigations.
• Identify and consult on the design of countermeasures to mitigate insider threats in our environment.
• Partner with stakeholders to contribute to Security Awareness messaging and Training.
• Participate in incident response activities and provide expertise during Insider Threat incidents.

Skills :

• 5+ years of hands-on in-depth knowledge and technical experience in security operations including detection engineering, threat hunting, incident response, digital forensics, and / or threat intelligence.
• Exposure to data science and analytics solutions applicable to the insider threat detection space.
• Experience with Insider Threat technologies (Data Loss Prevention solutions, UEBA, ).
• Foundational understanding of the relationship between insider threat and Incident Response, including how to effectively coordinate responses to insider threat incidents.
• Mid-level knowledge of insider threats within B2C companies, with a focus on security challenges specific to this industry.
• Knowledge and familiarity of the Cyber Kill Chain Framework and MITRE ATT&CK Framework and how these apply to the insider threat landscape.
• Experience automating security detection and response.
• Experience in AWS services (EC2, S3, Lambda, RDS) preferred.
• We are not focused on specific tools, but we often use Python, AWS, SQL, and more.
• Self-motivated and creative problem-solver able to work independently with minimal guidance.
• Ability to work calmly and collaboratively in critical high-stress situations with expediency.
• Outstanding organizational, prioritization, and multitasking skills.

Education :

Bachelor's degree in a related technical field or equivalent practical experience.

Russel Tobin offers eligible employee’s comprehensive healthcare coverage (medical, dental, and vision plans), supplemental coverage (accident insurance, critical illness insurance and hospital indemnity), a 401(k)-retirement savings, life & disability insurance, an employee assistance program, identity theft protection, legal support, auto and home insurance, pet insurance, and employee discounts with some preferred vendors.

LI-SK1

Company Description

Russell Tobin is an equal-opportunity employer and values diversity in the workplace. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Company Description

Russell Tobin is an equal-opportunity employer and values diversity in the workplace. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.