Mindteck
What you'll do
The Security Tools Engineer administers, monitors, and maintains security infrastructure, including application and container security tools, security orchestration solutions, SIEM, network security tools, system logging and analysis, endpoint security tools, and vulnerability management systems. The role also involves implementing and maintaining corporate security standards, technologies, and programs. What you bring
The Security Operations Engineer plays a key role in the information security team, ensuring best practices are followed and that security tools and processes are current. Candidates should have a security and systems engineering background, excellent communication skills, and the ability to articulate security policies to the business. Job Responsibilities / Typical Day in the Role
Build and maintain complex technical infrastructure supporting a secure platform that protects data at rest and in transit. Collaborate with enterprise and business owners to identify endpoint coverage scope and analyze operating systems and security toolsets. Provide technical guidance on industry tools and best practices in endpoint security. Monitor and maintain security tools that enforce security policies and capabilities. Manage enterprise security systems, focusing on minimally impactful security implementations. Enhance efficiencies through automation and orchestration solutions. Administer system infrastructure within public/private/hybrid environments. Stay updated on security trends and assess systems for proper configuration and defense. Deploy and correlate threat intelligence and vulnerability management solutions. Handle day-to-day security operations, including onboarding/offboarding security agents, user access, system security, configuration changes, upgrades, and ensuring system availability and disaster recovery. Serve as a point of contact for incident response, SOC analysts, application engineers, and security management. Technology requirements
Extensive experience with Cloud infrastructure, preferably AWS (EC2, ECS, Route53, SNS, Lambda, CloudWatch, Secrets Manager, RDS). Experience with configuration management tools (Ansible, Chef) and infrastructure as code (Terraform, CloudFormation). Scripting skills in Python or Go. Experience administering SIEM solutions, including log data ingestion configuration. Managing various security tools (SOAR, SIEM). Understanding of authentication/authorization (RBAC, IAM). Proficiency with Splunk and related SIEM and SOAR technologies (Cribl, Demisto). Experience integrating internal platforms with SaaS solutions like Tenable and SentinelOne. Building Docker containers. Must Have Skills / Requirements
Extensive experience with Splunk and related SIEM and SOAR tools (Cribl, Demisto). Extensive experience with Cloud infrastructure (preferably AWS) - EC2, ECS, Route53, SNS, Lambda, CloudWatch, Secrets Manager, RDS. Experience with configuration management tools (Ansible, Chef) and infrastructure as code (Terraform, CloudFormation). Nice to Have Skills / Preferred Requirements
Cybersecurity experience. Media or entertainment industry experience. Soft Skills
Exceptional verbal and written communication skills, capable of engaging with both senior executives and technical teams. Education / Certifications
SPLUNK Admin certification. AWS certifications. Additional Notes
Location: Silver Springs (flexible). This role offers broad security experience across EDR, SIEM, SOAR, and Vulnerability Management. For more information, visit https://www.mindteck.com/career/life-at-mindteck.html. Mindteck is an Equal Opportunity Employer, considering all qualified applicants without discrimination based on race, religion, color, national origin, sex, sexual orientation, gender identity, age, veteran status, disability, or other protected traits. #J-18808-Ljbffr
The Security Tools Engineer administers, monitors, and maintains security infrastructure, including application and container security tools, security orchestration solutions, SIEM, network security tools, system logging and analysis, endpoint security tools, and vulnerability management systems. The role also involves implementing and maintaining corporate security standards, technologies, and programs. What you bring
The Security Operations Engineer plays a key role in the information security team, ensuring best practices are followed and that security tools and processes are current. Candidates should have a security and systems engineering background, excellent communication skills, and the ability to articulate security policies to the business. Job Responsibilities / Typical Day in the Role
Build and maintain complex technical infrastructure supporting a secure platform that protects data at rest and in transit. Collaborate with enterprise and business owners to identify endpoint coverage scope and analyze operating systems and security toolsets. Provide technical guidance on industry tools and best practices in endpoint security. Monitor and maintain security tools that enforce security policies and capabilities. Manage enterprise security systems, focusing on minimally impactful security implementations. Enhance efficiencies through automation and orchestration solutions. Administer system infrastructure within public/private/hybrid environments. Stay updated on security trends and assess systems for proper configuration and defense. Deploy and correlate threat intelligence and vulnerability management solutions. Handle day-to-day security operations, including onboarding/offboarding security agents, user access, system security, configuration changes, upgrades, and ensuring system availability and disaster recovery. Serve as a point of contact for incident response, SOC analysts, application engineers, and security management. Technology requirements
Extensive experience with Cloud infrastructure, preferably AWS (EC2, ECS, Route53, SNS, Lambda, CloudWatch, Secrets Manager, RDS). Experience with configuration management tools (Ansible, Chef) and infrastructure as code (Terraform, CloudFormation). Scripting skills in Python or Go. Experience administering SIEM solutions, including log data ingestion configuration. Managing various security tools (SOAR, SIEM). Understanding of authentication/authorization (RBAC, IAM). Proficiency with Splunk and related SIEM and SOAR technologies (Cribl, Demisto). Experience integrating internal platforms with SaaS solutions like Tenable and SentinelOne. Building Docker containers. Must Have Skills / Requirements
Extensive experience with Splunk and related SIEM and SOAR tools (Cribl, Demisto). Extensive experience with Cloud infrastructure (preferably AWS) - EC2, ECS, Route53, SNS, Lambda, CloudWatch, Secrets Manager, RDS. Experience with configuration management tools (Ansible, Chef) and infrastructure as code (Terraform, CloudFormation). Nice to Have Skills / Preferred Requirements
Cybersecurity experience. Media or entertainment industry experience. Soft Skills
Exceptional verbal and written communication skills, capable of engaging with both senior executives and technical teams. Education / Certifications
SPLUNK Admin certification. AWS certifications. Additional Notes
Location: Silver Springs (flexible). This role offers broad security experience across EDR, SIEM, SOAR, and Vulnerability Management. For more information, visit https://www.mindteck.com/career/life-at-mindteck.html. Mindteck is an Equal Opportunity Employer, considering all qualified applicants without discrimination based on race, religion, color, national origin, sex, sexual orientation, gender identity, age, veteran status, disability, or other protected traits. #J-18808-Ljbffr