NewRez LLC
Exceed the expectations of our residential mortgage borrowers & business partners through superior service, simple processes, and effective communications.
We deliver on this mission by empowering our employees by encouraging and recognizing superior performance and innovative solutions, by promoting teamwork and divisional cooperation.
POSITION SUMMARY
Newrez is looking for a detail-oriented, proactive Sr Cybersecurity Engineer (SIEM Engineer) to help in secure design, configuration and deployment of applications, and overall enhance our security posture. This position requires hands-on experience in securely designing, developing and deploying applications in complex environments and geographically diverse offices. This role will be instrumental in designing secure applications, identifying vulnerabilities, responding to incidents, and ensuring compliance with industry standards and regulations.
DESCRIPTION
Duties and Responsibilities Integrate new data sources, which may include databases, APIs, files into our SIEM/EDR/XDR/XSOAR products. Validate and create appropriate configurations for Common Information Model (CIM) compliant logs. Analyze existing logs to identify poorly formatted logs and potential gaps when implementing new detection rules. Monitoring and tuning detection engines and rules. Develop search queries, reports, and other functionalities for cyber-based use cases, including active response, intrusion detection, and vulnerability management. Assisting analysts with creating and optimizing search queries. Identify telemetry quality and visibility issues with regards to SIEM parsing/normalization, XDR/EDR sensor health. Collaborate with the development and operations teams to securely deploy cloud solutions across the environment using security best practices principles. Create and maintain security documentations on designs, configurations and deployments including playbooks and standard operations procedures (SOP). Collaborate with DevOps teams to securely deploy various security tools across complex environments. Responsible for log ingestion, aggregations, analysis and reviews using tools like Cribl, Splunk and Exabeam. Stay current on emerging threats, vulnerabilities and regulatory changes. Work closely with the development and operations (DevOps) teams to securely design, develop, configure and deploy on-prem, cloud and multi-cloud native applications. Perform any other duties assigned by management. Qualifications and Education Requirements
Bachelor's degree in Cybersecurity, Computer Science, Management Information Systems or related field preferred. 5+ years' experience in Cybersecurity Engineering, Network Security, or Security Operations discipline. Industry standard certifications such as AZ500/AZ400, AWS Certified Solution Architect, CEH, GCIA, GCIH, Security+. Skills, Abilities, and Knowledge
Experience with SIEM platforms (EXABEAM), Firewalls, XDR, DLP, AV, Identity and Access Management (IAM) tools. Significant experience with event logging solutions preferably Cribl. Ability to craft queries using common languages like JSON and APIs. Strong understanding of network protocols, operating systems, security architecture, distributed computing environments, and troubleshooting strategies and concepts. Strong problem-solving and communication skills with ability to work independently with little or no supervision. Deep understanding of secure software development lifecycle and secure coding practices. Scripting skills, preferably Python, PowerShell and KQL. Experience with security in DevSecOps or CI/CD pipeline integration. Additional Information:
While this description is intended to be an accurate reflection of the position's requirements, it in no way implies/states that these are the only job responsibilities. Management reserves the right to modify, add or remove duties and request other duties, as necessary.
All employees are required to have smart phones that meet Company security standards with the ability to install apps such as Okta Verify and Microsoft Authenticator. Employment will be contingent on this requirement.
Company Benefits :
Newrez is a great place to work but we are only as strong as our greatest asset, our employees, so we believe in rewarding them!
Medical, dental, and vision insurance
Health Savings Account with employer contribution
401(k) Retirement plan with employer match
Paid Maternity Leave/Parental Bonding Leave
Pet insurance
Adoption Assistance
Tuition reimbursement
Employee Loan Program
The Newrez Employee Emergency and Disaster Fund is a new program to support our team members
Newrez NOW:
Our Corporate Social Responsibility program, Newrez NOW, empowers employees to become leaders in their communities through a robust program that includes volunteering, philanthropy, nonprofit grants, and more
1 Volunteer Time Off (VTO) day, company-paid volunteer day where all eligible employees may participate in a volunteer event with a nonprofit of their choice
Employee Matching Gifts Program: We will match monetary employee donations to eligible non-profit organizations, dollar-for-dollar, up to $1,000 per employee
Newrez Grants Program: Newrez hosts a giving portal where we provide employees an abundance of resources to search for an opportunity to donate their time or monetary contributions
Equal Employment Opportunity We're proud to be an equal opportunity employer- and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.
CA Privacy Policy
CA Notice at Collection
We deliver on this mission by empowering our employees by encouraging and recognizing superior performance and innovative solutions, by promoting teamwork and divisional cooperation.
POSITION SUMMARY
Newrez is looking for a detail-oriented, proactive Sr Cybersecurity Engineer (SIEM Engineer) to help in secure design, configuration and deployment of applications, and overall enhance our security posture. This position requires hands-on experience in securely designing, developing and deploying applications in complex environments and geographically diverse offices. This role will be instrumental in designing secure applications, identifying vulnerabilities, responding to incidents, and ensuring compliance with industry standards and regulations.
DESCRIPTION
Duties and Responsibilities Integrate new data sources, which may include databases, APIs, files into our SIEM/EDR/XDR/XSOAR products. Validate and create appropriate configurations for Common Information Model (CIM) compliant logs. Analyze existing logs to identify poorly formatted logs and potential gaps when implementing new detection rules. Monitoring and tuning detection engines and rules. Develop search queries, reports, and other functionalities for cyber-based use cases, including active response, intrusion detection, and vulnerability management. Assisting analysts with creating and optimizing search queries. Identify telemetry quality and visibility issues with regards to SIEM parsing/normalization, XDR/EDR sensor health. Collaborate with the development and operations teams to securely deploy cloud solutions across the environment using security best practices principles. Create and maintain security documentations on designs, configurations and deployments including playbooks and standard operations procedures (SOP). Collaborate with DevOps teams to securely deploy various security tools across complex environments. Responsible for log ingestion, aggregations, analysis and reviews using tools like Cribl, Splunk and Exabeam. Stay current on emerging threats, vulnerabilities and regulatory changes. Work closely with the development and operations (DevOps) teams to securely design, develop, configure and deploy on-prem, cloud and multi-cloud native applications. Perform any other duties assigned by management. Qualifications and Education Requirements
Bachelor's degree in Cybersecurity, Computer Science, Management Information Systems or related field preferred. 5+ years' experience in Cybersecurity Engineering, Network Security, or Security Operations discipline. Industry standard certifications such as AZ500/AZ400, AWS Certified Solution Architect, CEH, GCIA, GCIH, Security+. Skills, Abilities, and Knowledge
Experience with SIEM platforms (EXABEAM), Firewalls, XDR, DLP, AV, Identity and Access Management (IAM) tools. Significant experience with event logging solutions preferably Cribl. Ability to craft queries using common languages like JSON and APIs. Strong understanding of network protocols, operating systems, security architecture, distributed computing environments, and troubleshooting strategies and concepts. Strong problem-solving and communication skills with ability to work independently with little or no supervision. Deep understanding of secure software development lifecycle and secure coding practices. Scripting skills, preferably Python, PowerShell and KQL. Experience with security in DevSecOps or CI/CD pipeline integration. Additional Information:
While this description is intended to be an accurate reflection of the position's requirements, it in no way implies/states that these are the only job responsibilities. Management reserves the right to modify, add or remove duties and request other duties, as necessary.
All employees are required to have smart phones that meet Company security standards with the ability to install apps such as Okta Verify and Microsoft Authenticator. Employment will be contingent on this requirement.
Company Benefits :
Newrez is a great place to work but we are only as strong as our greatest asset, our employees, so we believe in rewarding them!
Medical, dental, and vision insurance
Health Savings Account with employer contribution
401(k) Retirement plan with employer match
Paid Maternity Leave/Parental Bonding Leave
Pet insurance
Adoption Assistance
Tuition reimbursement
Employee Loan Program
The Newrez Employee Emergency and Disaster Fund is a new program to support our team members
Newrez NOW:
Our Corporate Social Responsibility program, Newrez NOW, empowers employees to become leaders in their communities through a robust program that includes volunteering, philanthropy, nonprofit grants, and more
1 Volunteer Time Off (VTO) day, company-paid volunteer day where all eligible employees may participate in a volunteer event with a nonprofit of their choice
Employee Matching Gifts Program: We will match monetary employee donations to eligible non-profit organizations, dollar-for-dollar, up to $1,000 per employee
Newrez Grants Program: Newrez hosts a giving portal where we provide employees an abundance of resources to search for an opportunity to donate their time or monetary contributions
Equal Employment Opportunity We're proud to be an equal opportunity employer- and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better.
CA Privacy Policy
CA Notice at Collection