Fidelity National Financial
Detection Engineer (Cybersecurity)
Fidelity National Financial, Jacksonville, Florida, United States, 32290
Overview
POSITION OVERVIEW
Fidelity National Financial (FNF) is seeking a Detection Engineer to join our Information Security Office (ISO). The primary purpose of this position is to help coordinate, develop, enhance, and
recommend security tools, reporting, and metrics. The position assists in the development and tuning of the XSIAM platform and performs enhanced logging and monitoring as well as working with management to develop a continual roadmap for SOC improvement.
LOCATIONThis role can sit 100% remote, if located near Jacksonville, FL - some onsite may be required.DUTIES & RESPONSIBILITIES
Supports the Security Operation Center (SOC) environment as a SME on security tools (Splunk, XSIAM, etc.)Integrates and shares information across all teams in the Information Security Office.Recommends processes, improvements, and configurations following industry best practices.Works cross-functionally with the log management team and the automation engineering team.Provides threat and vulnerability analysis as well as security advisory services.Investigates, documents, and reports on information security issues and emerging trends.Other tasks and responsibilities as assigned.MINIMUM REQUIREMENTS
Bachelor's degree or the equivalent combination of education and work experience.Requires 5+ years' experience as in cybersecurity/information securityIn depth knowledge of various security methodologies and processes, and technical securityPREFERRED EXPERIENCE
Information security related training or certifications such as Security+, CEH, CISSP or CCSP.Experience working on a red team, blue team and/or purple team.Security monitoring experience with one or more SIEM technologies.Scripting / Coding experience (SPL, Python, XQL, etc.)Detail oriented with strong organizational and analytical skills.
POSITION OVERVIEW
Fidelity National Financial (FNF) is seeking a Detection Engineer to join our Information Security Office (ISO). The primary purpose of this position is to help coordinate, develop, enhance, and
recommend security tools, reporting, and metrics. The position assists in the development and tuning of the XSIAM platform and performs enhanced logging and monitoring as well as working with management to develop a continual roadmap for SOC improvement.
LOCATIONThis role can sit 100% remote, if located near Jacksonville, FL - some onsite may be required.DUTIES & RESPONSIBILITIES
Supports the Security Operation Center (SOC) environment as a SME on security tools (Splunk, XSIAM, etc.)Integrates and shares information across all teams in the Information Security Office.Recommends processes, improvements, and configurations following industry best practices.Works cross-functionally with the log management team and the automation engineering team.Provides threat and vulnerability analysis as well as security advisory services.Investigates, documents, and reports on information security issues and emerging trends.Other tasks and responsibilities as assigned.MINIMUM REQUIREMENTS
Bachelor's degree or the equivalent combination of education and work experience.Requires 5+ years' experience as in cybersecurity/information securityIn depth knowledge of various security methodologies and processes, and technical securityPREFERRED EXPERIENCE
Information security related training or certifications such as Security+, CEH, CISSP or CCSP.Experience working on a red team, blue team and/or purple team.Security monitoring experience with one or more SIEM technologies.Scripting / Coding experience (SPL, Python, XQL, etc.)Detail oriented with strong organizational and analytical skills.