LanceSoft
Technology and Operations - Information Security Analyst IV
LanceSoft, Silver Spring, Maryland, United States, 20900
What We Do/Project
The Security Engineering team empowers the Global Information and Content Security (GICS) teams by supporting the Security Engineering, Security Architecture, Threat Detection and Response, and other Security teams/functions through the deployment, management, and maintenance of shared, reliable, and extensible security platforms/systems. The security engineer plays a key role in the GICS security engineering team, ensuring that security best practices are followed and that tools and processes that support a secure platform are maintained and kept up to date. Ideal candidates will have a mixture of security and systems engineering backgrounds to ensure that business processes are configured correctly and that security best practices are designed and implemented.
Job Responsibilities / Typical Day in the Role • Implement design reviews to evaluate security controls • Identify and communicate opportunities to enhance the security posture of • Build and / or manage enterprise security platforms effectively • Communicate effectively across all levels of management to articulate security goals and vision. • Identify and communicate opportunities to enhance the security posture of • Build and / or manage enterprise security platforms effectively (SAAS, on premise or in Cloud) • Communicate effectively across all levels of management to articulate security goals and vision. • Have a team player mentality; strive to contribute to team cohesion however can work independently if the need arises • Plan, design, engineer and implement security-related technologies • Understanding technical security issues, their implications within business units and able to effectively communicate them to management and other business leaders. • Configure, troubleshoot, and maintain security infrastructure - including software and hardware in cloud environments, as well as on-premises. • Conduct security audits and assessments to regularly determine the effectiveness of security platforms and identify areas of improvement. • Host and operating systems hardening, auditing, monitoring and logging with appropriate security controls and best practices while meeting security best practices and business goals • Research and explore emerging security technologies and determine their appropriate use within the company. • Prepare, document, and create standard operating procedures and protocols. • Crosstrain and mentor other team members as needed
Must Have Skills / Requirements 1) Implementing advanced cyber security technology in a complex environment a. 5+ years of experience; Hands-on experience in security engineering, hands-on experience in building, designing, and maintaining enterprise security tools in a Linux environment. 2) Scripting experience (using Python, Go, or other equivalent languages) a. 5+ years of experience; Bash scripting experience 3) Hands-on Experience with Splunk Administration a. 3+ Years of experience; Back-end Splunk Administration (Data ingestion, Splunk Server Configuration, Forwarder Configuration, Basic understanding of Splunk Architecture)
Nice to Have Skills / Preferred Requirements 1) Security and Cloud certifications are a plus. (CISSP, AWS Solution architect). 2) Media/entertainment or distributed global network experience. 3) A minimum of 3+ years of hands-on Experience with automation technologies (e.g., Ansible, Terraform, etc.).
Soft Skills 1) Hands-on technical experience with networking and computing system architectures, specifically, the security aspects thereof. 2) Thorough understanding of information security principles, techniques, principles, policy frameworks, and best practices 3) Hands-on technical experience with compliance and regulatory frameworks and how they affect architecture designs and review
Education / Certifications 1) Splunk Admin Certification
Interview Process / Next Steps 1) 1 round screening with HM 2) 2nd round technical with security engineer and possibly including the HM
The Security Engineering team empowers the Global Information and Content Security (GICS) teams by supporting the Security Engineering, Security Architecture, Threat Detection and Response, and other Security teams/functions through the deployment, management, and maintenance of shared, reliable, and extensible security platforms/systems. The security engineer plays a key role in the GICS security engineering team, ensuring that security best practices are followed and that tools and processes that support a secure platform are maintained and kept up to date. Ideal candidates will have a mixture of security and systems engineering backgrounds to ensure that business processes are configured correctly and that security best practices are designed and implemented.
Job Responsibilities / Typical Day in the Role • Implement design reviews to evaluate security controls • Identify and communicate opportunities to enhance the security posture of • Build and / or manage enterprise security platforms effectively • Communicate effectively across all levels of management to articulate security goals and vision. • Identify and communicate opportunities to enhance the security posture of • Build and / or manage enterprise security platforms effectively (SAAS, on premise or in Cloud) • Communicate effectively across all levels of management to articulate security goals and vision. • Have a team player mentality; strive to contribute to team cohesion however can work independently if the need arises • Plan, design, engineer and implement security-related technologies • Understanding technical security issues, their implications within business units and able to effectively communicate them to management and other business leaders. • Configure, troubleshoot, and maintain security infrastructure - including software and hardware in cloud environments, as well as on-premises. • Conduct security audits and assessments to regularly determine the effectiveness of security platforms and identify areas of improvement. • Host and operating systems hardening, auditing, monitoring and logging with appropriate security controls and best practices while meeting security best practices and business goals • Research and explore emerging security technologies and determine their appropriate use within the company. • Prepare, document, and create standard operating procedures and protocols. • Crosstrain and mentor other team members as needed
Must Have Skills / Requirements 1) Implementing advanced cyber security technology in a complex environment a. 5+ years of experience; Hands-on experience in security engineering, hands-on experience in building, designing, and maintaining enterprise security tools in a Linux environment. 2) Scripting experience (using Python, Go, or other equivalent languages) a. 5+ years of experience; Bash scripting experience 3) Hands-on Experience with Splunk Administration a. 3+ Years of experience; Back-end Splunk Administration (Data ingestion, Splunk Server Configuration, Forwarder Configuration, Basic understanding of Splunk Architecture)
Nice to Have Skills / Preferred Requirements 1) Security and Cloud certifications are a plus. (CISSP, AWS Solution architect). 2) Media/entertainment or distributed global network experience. 3) A minimum of 3+ years of hands-on Experience with automation technologies (e.g., Ansible, Terraform, etc.).
Soft Skills 1) Hands-on technical experience with networking and computing system architectures, specifically, the security aspects thereof. 2) Thorough understanding of information security principles, techniques, principles, policy frameworks, and best practices 3) Hands-on technical experience with compliance and regulatory frameworks and how they affect architecture designs and review
Education / Certifications 1) Splunk Admin Certification
Interview Process / Next Steps 1) 1 round screening with HM 2) 2nd round technical with security engineer and possibly including the HM