Lumen Technologies
LEAD INFORMATION SECURITY ENGINEER
Lumen Technologies, Herndon, Virginia, United States, 22070
About Lumen
Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress.
We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.
The Role
The Lumen Threat Research team is looking for an experienced security analyst to identify, track, and summarize emerging threats on the internet. We need your skills to help research, understand, and identify emerging threats that are at the forefront of today's cybersecurity current events. We are searching for a Security Research Engineer that has broad knowledge of threats, and a desire to learn even more. You will help us stay on top of emerging problems and track the world's botnets that pose a threat to the internet and our customers. If you have a passion for making the internet a safer place, and a love of working with cutting edge technologies, this is the job you have been looking for. The Main Responsibilities
Administration of SIEM Platforms (Splunk, IBM QRadar, ArcSight, LogRythm, McAfee ESM, Microsoft OMS, etc.) Develop custom content in SIEM Platforms Supports customers at the highest levels in the development and implementation of doctrine and policies. Performs analysis, design, and development of custom correlation rules, reports, and dashboards. Analyzes performance and overall health of SIEM platform. Designs, develops, engineers, and implements solutions that meet security requirements (relating to SIEM solutions and event collection). Analyzes general information assurance-related technical problems and provides basic engineering and technical support in solving these problems. Technology escalation point for SIEM and underlying event collection components. Manage endpoint security solution suites Meet client's operational and security goals utilizing cloud products and technologies Perform Incident Response per the client's Incident Response Plan Develop custom correlation, reports, and dashboards. Implementation and testing of custom parsers Configure and tune SIEM platform to ensure optimal performance. Provide expertise in event collection and parsing related to SIEM platform. Asses existing SIEM platform and identify key system flaws and areas of improvement Perform annual assessment of SIEM configuration and custom content Develop detailed supporting documentation regarding technical projects (such as materials to support an architecture review board) Manage customer expectation and attend all mandatory review / regulatory discussions related to the specific project being delivered Help establish baseline and plan for improvement of a large enterprise deployment of SIEM and event collection platform. Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems Contributes to deliverables and performance metrics where applicable. What We Look For in a Candidate
Typically 8+years of IT Security experience with Bachelor's Degree, or equivalent education and experience; 6+ year of IT Security experience with Master's Degree Expert in one of the following SIEM platforms: Splunk, IBM QRadar, ArcSight, LogRythm, McAfee ESM, Microsoft OMS Experience writing custom parsers Exposure to at least one industry standard data parsing language. Security certification desired Advanced experience in networking (TCP/IP) protocols, computer/network security, and system administration. Advanced knowledge of event collection technologies. Background in INFOSEC operations, endpoint management, and network topology Windows and Linux skills desired Linux scripting skills desired Compensation
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors Location Based Pay Ranges: $114,082 - $152,109 in these states: VA Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. Equal Employment Opportunities
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
#J-18808-Ljbffr
The Lumen Threat Research team is looking for an experienced security analyst to identify, track, and summarize emerging threats on the internet. We need your skills to help research, understand, and identify emerging threats that are at the forefront of today's cybersecurity current events. We are searching for a Security Research Engineer that has broad knowledge of threats, and a desire to learn even more. You will help us stay on top of emerging problems and track the world's botnets that pose a threat to the internet and our customers. If you have a passion for making the internet a safer place, and a love of working with cutting edge technologies, this is the job you have been looking for. The Main Responsibilities
Administration of SIEM Platforms (Splunk, IBM QRadar, ArcSight, LogRythm, McAfee ESM, Microsoft OMS, etc.) Develop custom content in SIEM Platforms Supports customers at the highest levels in the development and implementation of doctrine and policies. Performs analysis, design, and development of custom correlation rules, reports, and dashboards. Analyzes performance and overall health of SIEM platform. Designs, develops, engineers, and implements solutions that meet security requirements (relating to SIEM solutions and event collection). Analyzes general information assurance-related technical problems and provides basic engineering and technical support in solving these problems. Technology escalation point for SIEM and underlying event collection components. Manage endpoint security solution suites Meet client's operational and security goals utilizing cloud products and technologies Perform Incident Response per the client's Incident Response Plan Develop custom correlation, reports, and dashboards. Implementation and testing of custom parsers Configure and tune SIEM platform to ensure optimal performance. Provide expertise in event collection and parsing related to SIEM platform. Asses existing SIEM platform and identify key system flaws and areas of improvement Perform annual assessment of SIEM configuration and custom content Develop detailed supporting documentation regarding technical projects (such as materials to support an architecture review board) Manage customer expectation and attend all mandatory review / regulatory discussions related to the specific project being delivered Help establish baseline and plan for improvement of a large enterprise deployment of SIEM and event collection platform. Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems Contributes to deliverables and performance metrics where applicable. What We Look For in a Candidate
Typically 8+years of IT Security experience with Bachelor's Degree, or equivalent education and experience; 6+ year of IT Security experience with Master's Degree Expert in one of the following SIEM platforms: Splunk, IBM QRadar, ArcSight, LogRythm, McAfee ESM, Microsoft OMS Experience writing custom parsers Exposure to at least one industry standard data parsing language. Security certification desired Advanced experience in networking (TCP/IP) protocols, computer/network security, and system administration. Advanced knowledge of event collection technologies. Background in INFOSEC operations, endpoint management, and network topology Windows and Linux skills desired Linux scripting skills desired Compensation
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors Location Based Pay Ranges: $114,082 - $152,109 in these states: VA Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. Equal Employment Opportunities
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
#J-18808-Ljbffr