JBA International
Security Engineer II
JBA International, Los Angeles, California, United States, 90079
Duties and Responsibilities
Assist in implementing Security Information and Event Management (SIEM), which includes but is not limited to; identifying deployment solutions, maintaining logs, assisting in developing company best practices for security alert correlations, perform root cause analysis after incidents.
Assist with Endpoint Detection and Response (EDR) vendor analysis and deployment, which includes, but is not limited to; partnering with IT to develop a decision matrix for EDR vendor selection, assist with deployment, develop patterns for automatic response to identified threats.
Conduct structured and unstructured data scans, testing, and debugging of applications by using a variety of technical privacy tools to increase compliance and documentation of procedures and information assets.
Write and deploy SQL to archive and/or purge data from databases and to locate, review, explain and document data for privacy requirements.
Perform regular privacy assessments and impact analysis on databases and operational processes by developing effective tools, training, and guidance to help identify and mitigate risk. This includes data anonymization, pseudonymization and encryption.
Perform detection, analysis, and containment of an incident.
Identify key performance metrics for security IR and implement instrumentation for those metrics.
Maintain, manage and prioritize hardware, software, systems and/or product backlog, while actively identifying risks, constraints, and dependencies that would impact roadmap.
Demonstrate, integrate, and collaborate on enhancing existing security solutions and services to address any gaps or deficiencies.
Perform security incident response drill scenarios and lead tabletop exercises.
Ensure proper training for stakeholders regarding their incident response roles and responsibilities in the event of a breach.
Collaborate with internal teams to ensure the data retention or system requirements, user-facing privacy controls, new or existing software, and big data solutions enable the business to be data driven while protecting the data assets.
Work with the legal department to produce data both internally and externally and ensure any legal request or litigation hold requirements are met.
Assist with projects and enhancements, including gathering requirements, conducting research, task management and updating key partners and stakeholders with the goal of developing solutions to help mitigate privacy vulnerabilities and future privacy risks.
Study and interpret past privacy events and current privacy threats to improve privacy compliance using advanced technologies and design principles to develop and implement new tools and processes.
Assist both internal and external teams on data governance strategy, updates to legal regulations, and direction on future roadmaps.
Collaborate with vendors on data and privacy standards.
Qualifications & Requirements
Bachelor’s Degree in computer science, IT, systems engineering, or related qualification.
2+ years of experience in the security industry working in any combination of the following areas: Risk management, cloud operations and engineering, network security monitoring, log analysis, static and dynamic malware analysis, NIST Kill Chain, MITRE ATT&CK framework, threat hunting, SIEM, EDR.
Experience responding to security events.
Writing and reviewing code (Java, Python, Node or similar).
Excellent written and verbal communication, facilitation, and presentation skills to collaborate effectively with software engineering teams.
Implementing security detection capabilities.
Proven ability to make decisions and perform complex problem-solving activities under pressure.
Some knowledge of AWS cloud infrastructure and their threat landscape.
#J-18808-Ljbffr
Assist in implementing Security Information and Event Management (SIEM), which includes but is not limited to; identifying deployment solutions, maintaining logs, assisting in developing company best practices for security alert correlations, perform root cause analysis after incidents.
Assist with Endpoint Detection and Response (EDR) vendor analysis and deployment, which includes, but is not limited to; partnering with IT to develop a decision matrix for EDR vendor selection, assist with deployment, develop patterns for automatic response to identified threats.
Conduct structured and unstructured data scans, testing, and debugging of applications by using a variety of technical privacy tools to increase compliance and documentation of procedures and information assets.
Write and deploy SQL to archive and/or purge data from databases and to locate, review, explain and document data for privacy requirements.
Perform regular privacy assessments and impact analysis on databases and operational processes by developing effective tools, training, and guidance to help identify and mitigate risk. This includes data anonymization, pseudonymization and encryption.
Perform detection, analysis, and containment of an incident.
Identify key performance metrics for security IR and implement instrumentation for those metrics.
Maintain, manage and prioritize hardware, software, systems and/or product backlog, while actively identifying risks, constraints, and dependencies that would impact roadmap.
Demonstrate, integrate, and collaborate on enhancing existing security solutions and services to address any gaps or deficiencies.
Perform security incident response drill scenarios and lead tabletop exercises.
Ensure proper training for stakeholders regarding their incident response roles and responsibilities in the event of a breach.
Collaborate with internal teams to ensure the data retention or system requirements, user-facing privacy controls, new or existing software, and big data solutions enable the business to be data driven while protecting the data assets.
Work with the legal department to produce data both internally and externally and ensure any legal request or litigation hold requirements are met.
Assist with projects and enhancements, including gathering requirements, conducting research, task management and updating key partners and stakeholders with the goal of developing solutions to help mitigate privacy vulnerabilities and future privacy risks.
Study and interpret past privacy events and current privacy threats to improve privacy compliance using advanced technologies and design principles to develop and implement new tools and processes.
Assist both internal and external teams on data governance strategy, updates to legal regulations, and direction on future roadmaps.
Collaborate with vendors on data and privacy standards.
Qualifications & Requirements
Bachelor’s Degree in computer science, IT, systems engineering, or related qualification.
2+ years of experience in the security industry working in any combination of the following areas: Risk management, cloud operations and engineering, network security monitoring, log analysis, static and dynamic malware analysis, NIST Kill Chain, MITRE ATT&CK framework, threat hunting, SIEM, EDR.
Experience responding to security events.
Writing and reviewing code (Java, Python, Node or similar).
Excellent written and verbal communication, facilitation, and presentation skills to collaborate effectively with software engineering teams.
Implementing security detection capabilities.
Proven ability to make decisions and perform complex problem-solving activities under pressure.
Some knowledge of AWS cloud infrastructure and their threat landscape.
#J-18808-Ljbffr