This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Corus - Tallahassee, FL
posted 2 months ago
Full-time - Mid Level
Remote - Tallahassee, FL
Broadcasting and Content Providers
About the position
This full-time, permanent position as an Engineer within the Cybersecurity Strategy & Defense practice at Converge involves acting as a trusted advisor to clients, providing expertise in Incident Response and Endpoint Detection technologies. The role includes refining incident response processes and consulting on cybersecurity best practices, with a strong emphasis on team member growth through training and certification opportunities.
Responsibilities
- Regularly monitor IR queues and assign tickets based on expertise.
- Triage and resolve tickets using QuickBooks and collaborate with team members as needed.
- Conduct proactive threat hunts by developing hypotheses based on client-specific threats and vulnerabilities.
- Create and update IR QuickBooks (runbooks) informed by experience with detection use cases.
- Participate in required meetings and collaborate on addressing critical issues.
- Develop subject matter expertise (SME) in one or more security technologies.
- Assist with the IR content migration from Splunk Ad-Hoc to Splunk ES (Enterprise Security).
- Maintain a comprehensive understanding of the CrowdStrike environment to manage tasks such as assessing the impact of recent CrowdStrike release notes and technical alerts, and implementing changes in accordance with client change management policies.
- Create and modify Fusion workflows to enhance IR operational efficiency.
- Develop and update custom IOAs to detect specific threats relevant to clients.
- Possess a basic understanding of the Splunk environment and the ability to use SPL (Search Processing Language) proficiently.
- Create and modify saved searches tailored to IR operational needs.
Requirements
- 3+ years of experience in a professional cybersecurity capacity
- 2+ years of experience working within Incident Response
- Hands-on experience with CrowdStrike is required
- Hands-on experience with Splunk is required
- CrowdStrike & Splunk certifications are a big plus
- Defensive & Response cybersecurity certifications via SANS are a big plus
Benefits
- Base salary
- Quarterly bonus
- Healthcare benefits
- 401k match
- Company stock match program
- PTO/holiday
- Training/development
