Security Operations Engineer
Donnelley Financial Solutions (DFIN) is a leader in risk and compliance solutions, providing insightful technology, industry expertise and data insights to clients across the globe. We’re here to help you make smarter decisions with insightful technology, industry expertise and data insights at every stage of your business and investment lifecycles. As markets fluctuate, regulations evolve and technology advances, we’re there. And through it all, we deliver confidence with the right solutions in moments that matter.
Position Summary
Security Operations Engineer will be responsible for day-to-day support and maintenance of security infrastructure including but not limited to SIEM, EDR, DDOS appliance and Next-Gen Firewalls. He will work closely with Security Monitoring and Incident Response team to make sure all the security platforms meet their daily needs and provide necessary visibility. Security Operations Engineer must maintain knowledge of changing security technology landscape and will take active role in evaluation of new security products, services and/or procedures to enhance productivity and effectiveness.
Responsibilities
● Responsible for day-to-day support and maintenance of security infrastructure systems such as Elastic Stack, Empow SIEM, LogRhythm SIEM, Palo Alto Networks Firewall and VPN infrastructure, Tanium, Radware DDOS infrastructure and more
● Act as the hands-on technical SME for the critical DFIN security infrastructure elements
● Cross-train teammates
● Research, evaluate, design, test, recommend and plan implementation of new or improved information security solutions
● Support investigations of suspected cyber security misuse or security findings stemming from compliance reviews as requested and approved by the SVP-CISO
● Perform maintenance upgrades for the existing systems
● Develop necessary technical documentation and reports
● Develop and track key metrics that demonstrate current security infrastructure operational state and any associated risk indicators
● Engage with and influence key stakeholders to ensure that compliance, security and cross-functional requirements are met
Qualifications
● Bachelor degree with 5+ years of relevant work experience OR demonstrated ability to meet the job requirements through a comparable number of years of applicable work experience and education
● Strong knowledge across multiple information security domains
● CISSP, GIAC, and other relevant certifications highly desired
● Knowledge of risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and cyber-attack techniques
● Ability to relate business requirements and risks to technology implementation for security-related issues
● Experience implementing, supporting, and/or maintaining PCI, NIST, SOC2, and other security frameworks and certifications for medium and/or large enterprises
● Technical proficiency in UNIX, DNS, Windows Server, Internet routing, TCP/IP protocols, Network technologies, and other foundational technology concepts
● Ability to function as a respected subject matter expert and consultant to other IT and business groups
● Self-driven, highly-motivated with a strong customer focus
● Strong analytical and problem-solving skills
● Solid project management skills, especially in a cross-functional environment
● Expert-level knowledge of Security Incident & Event Management platforms
● Solid knowledge of next-generation firewall platforms, such as Palo Alto Networks, Fortinet, and Checkpoint
● Knowledge of Networking protocols, IP subnets
● Advanced-level knowledge of intrusion detection and/or prevention systems
● Proven knowledge of Threat Intelligence architectures and technologies
● Advanced knowledge of cyber-attack techniques and exploits as well as mitigation strategies
● Strong proficiency with common scripting languages (e.g. PowerShell, BASH and Python)
● Extensive experience working with Azure Active Directory and Microsoft Active Directory
● Solid understanding of leading cloud platforms such as MS Azure and Amazon AWS
It is the policy of Donnelley Financial Solutions to select, place and manage all its employees without discrimination based on race, color, national origin, gender, age, religion, actual or perceived disability, veteran's status, actual or perceived sexual orientation, genetic information or any other protected status.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access jobs.dfinsolutions.com as a result of your disability. You can request a reasonable accommodation by sending an email to [email protected]. #TalentknowsTalent