Security Engineer

Job Description

As a Security Engineer, you will monitor, investigate, and respond to security threats across systems and networks. You will continuously improve cybersecurity response operations and develop learning and development materials for Security Operations. This role requires you to grow the presence and thought leadership of Security Operations, define and track key performance indicators (KPIs), and participate in on-call rotation for incident response and escalations. You will also prepare and present the Security Operations vision and strategy to leadership and automate Security Operations processes.

Responsibilities

• Monitor, investigate, and respond to security threats across systems and networks
• Continuously improve cybersecurity response operations
• Develop Security Operations learning and development materials
• Grow the presence and thought leadership of Security Operations
• Define, implement, and track Security Operations KPIs
• Participate in on-call rotation for incident response and escalations
• Prepare and present Security Operations vision and strategy for Security leadership
• Automate Security Operations processes

Essential Skills

• Experience as a lead in the Security Operations program (7+ years experience)
• Experience with cybersecurity incident response investigations and management
• Experience triaging and investigating cybersecurity alerts
• Experience with SIEM, EDR, and log analysis
• Experience developing tools to optimize and automate response processes
• Proficiency in Python
• Exceptional communication and stakeholder management skills with proven ability to communicate clearly with all leadership levels
• Familiarity with Cloud Security (AWS) and infrastructure-as-code

Skills & Qualifications

• Experience aligning Security Operations with industry standards including NIST / SOC2 / ISO
• Experience conducting training and mentoring for Security Operations and Incident Response
• Metrics/Data Analytics experience
• Experience with Cloud and Enterprise Forensics

Work Environment

100% REMOTE - Contract (w2), Actalent Offers Benefits.

The Detection and Response team’s mission is to identify, contain, and eradicate cybersecurity threats in the software, hardware, and services. While the preferred location is Pittsburgh, this role can be 100% remote. The Security Team is responsible for building, testing, and maintaining threat detection controls for the enterprise, operating a mature Security Operations program, and leading investigations of cybersecurity events.