Sr. Information Security Engineer in Iselin, New Jersey at AccruePartners

Date Posted: 8/1/2020

Job Snapshot

Job Description

AccruePartners values our contract and consulting employees. We offer a competitive benefits package to meet the diverse needs of all of our contractor and consulting employees and their family members. Here is a listing of what our company offers: 401(k) Medical, Dental, Vision, Life Insurance, Employee Assistance Program, Medical and Prescription Drug, Short and Long-Term Disability Insurance.

THE TEAM YOU WILL BE JOINING:

  • Fortune 100 Financial Services Company
  • 100-year history of dedication to customer satisfaction, success and growth
  • Tremendous growth and new business strategy leading to the need for new talent
  • Significant investments in cutting-edge technology

WHAT THEY OFFER YOU:

  • Culture: Excellent work environment that fosters collaboration
  • Growth: Ability to make an impact on the direction of the organization
  • Opportunity: Gain hands-on experience working with cutting-edge technology
  • Stability: Recent financial performance of the company has reported record profits

WHERE THE POSITION IS LOCATED:

  • Charlotte, NC OR Iselin, NJ OR Broomfield, CO

WHY THIS ROLE IS IMPORTANT:

  • Review new security log data sources. Size, understand and create log parsing.
  • Develop new SIEM content (Splunk ES) including correlations, dashboards, reports, and alerts that appropriately characterize the importance of events of interest found in their operational environment
  • Document and develop tools to assist Security Operations personnel in log collection and review
  • Develop metrics and trends that demonstrate the log platform's health and operational state
  • Provide business requirements to peer teams within the company that relate to the governance, development, and sustainability of logging related to security-relevant events
  • Support for security operations for potential crisis situations, with 24x7 availability as needed
  • Participate in information security audits, ensuring the technical compliance with related (e.g. PCI, SOX, etc) regulatory requirements
  • Ensure breadth and depth of coverage within the SIEM environment for all security solutions deployed; ensure that technologies are properly being leveraged to provide detective capabilities of security events
  • Maintain operational effectiveness of SIEM content rules, accepting requests from Security Operations and elsewhere in the business (within the governance framework) to tune and implement rules to meet emerging threats
  • Collaborate with others inside of IT Risk and Information Security, as well as elsewhere in the business, to ensure excellence
  • Define, document, and implement appropriate delivery, parsing, reporting, and retention of security-relevant log information

THE BACKGROUND THAT FITS:

Required:

  • 3+ years in information technology and/or information security
  • 1+ years Information Security
  • 1+ Years building solutions to support Information Security
  • 1+ Year working with Security Operations Centers
  • Strong Problem Solving skills
  • Proficiency with Regex
  • Proficiency in Python
  • Proficiency with Windows & Linux

Desired:

  • 5+ years experience in information technology
  • 2+ years experience in information security
  • Experience in managing, engineering, or developing content for centralized logging solutions. (Splunk, ArcSight, ELK, Graylog, etc)
  • 1+ years SIEM (Splunk ES) content development experience
  • Familiarity with a broad range of security technologies and how they function, as well as non-security devices and how their log outputs can indicate security incidents
  • 1+ years in log review, analysis, and design of searches / alerts to bring actionable intelligence from logs
  • Understanding of Splunk engineering a plus
  • Excel or other data processing & visualization skills
  • Basic understanding of one or more of the following: Shell scripting, Perl, or other scripting