Description of the position
backSecurity Expert
Stimulating. Motivating. Challenging.
Kudelski Security, a division of the Kudelski Group (SIX: KUD.S), is an innovative, independent Swiss provider of tailored cyber and media security solutions to enterprises and public sector institutions.
Our team of security experts delivers end-to-end consulting, technology, managed services, and threat intelligence to help organizations build and run successful security programs. Our global reach and cyber solutions focus is reinforced by key international partnerships. Kudelski Security is headquartered in Phoenix, Arizona and Cheseaux-sur-Lausanne, Switzerland. For more information, please visit: www.kudelskisecurity.com
Security Expert
Location : Phoenix, United States
Mission
As a member of the MSS Operations team, the Security Expert is responsible for supporting and managing the tools, systems, and technology provided to clients of Kudelski’s Managed Security Services business globally. Kudelski Security’s Managed Security Services include Security Device Management and Support, Threat Monitoring, Managed Endpoint Protection and Response, Managed Attacker Deception, Managed Anti-Malware, and Managed Vulnerability Scanning. In addition to possessing deep technical knowledge, an MSS Security Engineer interacts extensively with clients and partners using polite professional etiquette.
What you will be doing?
Our Security Experts are responsible for triaging security alerts, analyzing all available data to determine if a cyber-attack is occurring, scoping the extent of a suspected attack, coordinating efforts to contain attacks, performing forensic investigations to determine the details around an attack, and providing guidance on remediation actions.
In this role, you will perform attack scope and root cause analysis, develop attack remediation strategies and ensure the communication and escalation of security activities to leadership. You will also assist in the development of incident handling processes, standard operating procedures, playbooks and runbooks. Through developing workflow automation, you will lower response times.
You will work with Incident Response and SOC teams to make improvements to detection and alerting mechanisms and conduct forensic investigations to determine incident details and provide supporting evidence.
Who we are looking for?
You should have extensive experience in leading cyber-attack investigations and of working in a similar 24/7 environments managing cases with enterprise SIEM or Incident Management systems. We are looking for analytical, critical thinkers, who have an eye for detail and are solution orientated. You should be quick to learn and adapt and operate in a dynamic environment.
You will also need to have the following technical skills and experience:
- Security certification (e.g. Security+, GCIA, GCIH, CISSP)
- Comprehensive knowledge APT actors; their tools, techniques, and procedures (TTPs)
- Expert knowledge of TTP methods and frameworks
- Expert knowledge of TCP/IP communications & knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB
- Expert knowledge of one or more
- Windows/AD file system, registry functions and memory artifacts
- Unix/Linux file systems and memory artifacts
- Mac file systems and memory artifacts
- Database, web application, cloud, or mobile device cyber incident response principals and techniques
- Cybersecurity automation
- Web servers and web applications
- SIEM (Splunk)
- Security tools: IPS, Web proxy, Email proxy, pDNS, Deception, EDR etc....
- Experience with one or more scripting languages (Powershell, Python, Bash, etc.)
- Experience with integration of threat hunting and cyber threat intelligence into the incident response process
Candidates responding to this posting must independently possess the eligibility to work in the United States at the date of hire.
Why Kudelski Security?
Demand for cyber security talent is outstripping supply - we know you have many great options for your career pathway. But we'd like to think that Kudelski Security will be your best next move. Here are a few reasons why:
- Benefits
Kudelski Security has a valuable benefits package within 30 days. Benefits include: Health, Dental, Vision, 401K match 50% of contribution of first 7.5%, health savings contributions direct from Kudelski Security, fully paid 2X earnings Life insurance, $5,000 annual educational assistance, 15 Days earned vacation time, 10 sick days per year, 10 paid company holidays, and a state of the art facility built in 2016 with an onsite Chef and covered parking.
- International Opportunity
Kudelski Security has clients and operations in both Europe and the Americas and there are opportunities for you to work in either, or both, regions. We’re growing rapidly and investing in our business, markets, clients, and employees.
- Culture Matters
All Kudelski Group businesses share a deep commitment to the employee relationship and strive to ensure a rewarding professional environment. From designated ‘innovation time’, to training opportunities and world-class benefits, we work hard to ensure our employees enjoy being a part of our team.
- Professional Respect
Finding good talent today is hard; keeping it is an even greater challenge. Many companies have resorted to restrictive non-compete agreements that create a barrier between the organization and the employee. We take a different approach, creating employee relationships based on professionalism, personal growth and mutual respect.
Reference : 11616
Publication Date : 10-08-2020
