Network Security Engineer

Detailed understanding of the TCP/IP protocol suite System Administrator-level expertise in multi-user operating systems including Unix flavors and Microsoft Windows Demonstrated expertise in current modern security attacks and threats Demonstrated expertise in malware analysis, categorization, and attribution: Sandboxing technologies and products, commercial and open source Malware reverse-engineering and disassembly skills a plus Understanding of security incidents involving alternate OSs including Android and iOS Experience in scripting in one or more languages: shell, perl, python, or PHP Experience with virtualization technologies including VMWare, OpenStack, and other hypervisors General Cisco network security product and technology knowledge: Firewalls, Intrusion Prevention Systems, Web and Email Security Route and switch infrastructure Network security configuration and troubleshooting non-Cisco product and technology knowledge a plus Responsibilities: Conduct in-depth investigations into security breaches using all available tools within Customer environment, Cisco, and online: Review device logs, full packet capture, and all forms of telemetry, interpret data Conduct online forensic investigations of devices (UNIX, Windows hosts and other platforms) Interview personnel to obtain information related to investigation Maintain up-to-date information in a secure case management system Identify, advise and implement incident mitigation actions, using the following tools: null routing, Firewall ACL changes, DNS RPZ Next-Generation IPS, Web Security and Email Security Endpoint and Network Advanced Malware Protection systems account disabling and application offlining Resolve cases escalated from Security Analysts (either as escalated ticket to customer resolving as false positive.). Resolve cases dispatched from Customers, maintain daily dialog with Customer on case until resolved Effect resolution by driving coordination across infrastructure, law enforcement, human resources, legal, and lines of business Vigilantly protect Customer data, ensuring proper handling and protection electronically, physically, and verbally Ensure assigned shift is covered personally or attended by an alternate Investigator Share incidents and intelligence via conference presentations, intelligence exchanges, informal mailing lists, and social media Mentor Analysts in investigative skills and customer communications Maintain quality assurance for all processes Conduct threat research to determine how Clients are affected by threats Additional Information

All your information will be kept confidential according to EEO guidelines. #J-18808-Ljbffr