Conscientia Corp
DLP Security Engineer
Conscientia Corp, Plano, Texas, us, 75086
Job Responsibilities
Endpoint Detection and Response (EDR) softwareHost and Network based Data Loss Prevention (DLP) softwareEmail encryption softwareAnti-malware/Anti-virus softwareOther security applicationsConduct analysis, troubleshooting, and trending of incidents/events detected from Endpoint security solutions, DLP, and other security applicationsManage various deployed DLP technologies and their integration points with Configuration Management Database (CMDB), Email infrastructure, LDAP (e.g. Active Directory), etc.Create custom rules and tune existing rules, policies, alerts, etc. within various security applications based on stakeholder needs or situational conditionsConduct ongoing Threat Hunting exercises using existing security applicationsPerform Level 2 & 3 triage and handling of security events (escalated from Level 1 Security Analysts or other); includes but is not limited to identification, containment, remediation, and reporting activities.Create new and enhance existing procedures to improve operational efficiencies and reporting accuracyDevelop detailed technical recommendations to solve current and future security issues; identify protection gaps and propose effective mitigating solutionsMaintain awareness of emerging threats to data protection, system integrity, and network availabilityEvaluate, design, architect, implement, and configure new security products and technologiesDevelop, review, and maintain documentation for security systems and proceduresExpand Threat Intelligence program through integration, automation, and enhanced workflowsAnalyze, evaluate, and communicate Threat Intelligence notifications to reduce risk exposures and to defend against cyber attacksQualifications
Must Haves:A Bachelor's Degree in Computer Science or Engineering or equivalent experienceCoding/Scripting experience (e.g. Python, Perl, PowerShell)Proven experience with creating Regular ExpressionsExperience with RESTful APIs and automation1 Year of Symantec and/or McAfee DLP operational experience is required; must have implemented and managed DLP; must possess strong technical knowledge of DLP architecture, system policies, rules, etc.Strong verbal and written communications skills; must be able to effectively communicate technical details and thoughts in non-technical/general terminology to various levels of managementWork well in team environments with internal and external resources as well as work independently on tasksStrong organizational, multi-tasking, and time management skillsAdditional Information
Preferred/ Nice-to-haves:CISSP, CISA, CEH, OSCP, or other industry recognized security certification(s)Cloud Access Security Broker (CASB) implementation and/or management experienceNext Generation Anti Malware implementation and/or management experience1 Year of Threat Intelligence administration experience; have used or implemented the above program in some capacity, understanding incident response, analysis, rules, etc.
#J-18808-Ljbffr
Endpoint Detection and Response (EDR) softwareHost and Network based Data Loss Prevention (DLP) softwareEmail encryption softwareAnti-malware/Anti-virus softwareOther security applicationsConduct analysis, troubleshooting, and trending of incidents/events detected from Endpoint security solutions, DLP, and other security applicationsManage various deployed DLP technologies and their integration points with Configuration Management Database (CMDB), Email infrastructure, LDAP (e.g. Active Directory), etc.Create custom rules and tune existing rules, policies, alerts, etc. within various security applications based on stakeholder needs or situational conditionsConduct ongoing Threat Hunting exercises using existing security applicationsPerform Level 2 & 3 triage and handling of security events (escalated from Level 1 Security Analysts or other); includes but is not limited to identification, containment, remediation, and reporting activities.Create new and enhance existing procedures to improve operational efficiencies and reporting accuracyDevelop detailed technical recommendations to solve current and future security issues; identify protection gaps and propose effective mitigating solutionsMaintain awareness of emerging threats to data protection, system integrity, and network availabilityEvaluate, design, architect, implement, and configure new security products and technologiesDevelop, review, and maintain documentation for security systems and proceduresExpand Threat Intelligence program through integration, automation, and enhanced workflowsAnalyze, evaluate, and communicate Threat Intelligence notifications to reduce risk exposures and to defend against cyber attacksQualifications
Must Haves:A Bachelor's Degree in Computer Science or Engineering or equivalent experienceCoding/Scripting experience (e.g. Python, Perl, PowerShell)Proven experience with creating Regular ExpressionsExperience with RESTful APIs and automation1 Year of Symantec and/or McAfee DLP operational experience is required; must have implemented and managed DLP; must possess strong technical knowledge of DLP architecture, system policies, rules, etc.Strong verbal and written communications skills; must be able to effectively communicate technical details and thoughts in non-technical/general terminology to various levels of managementWork well in team environments with internal and external resources as well as work independently on tasksStrong organizational, multi-tasking, and time management skillsAdditional Information
Preferred/ Nice-to-haves:CISSP, CISA, CEH, OSCP, or other industry recognized security certification(s)Cloud Access Security Broker (CASB) implementation and/or management experienceNext Generation Anti Malware implementation and/or management experience1 Year of Threat Intelligence administration experience; have used or implemented the above program in some capacity, understanding incident response, analysis, rules, etc.
#J-18808-Ljbffr