This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Senior Security Operations Engineer
95 Percent Group - Lincolnshire, IL
posted about 2 months ago
About the position
The Senior Security Operations Engineer at 95 Percent Group is a hands-on role focused on maintaining and enhancing the security of the organization's applications and SaaS platform. The position emphasizes a proactive approach to security, including incident response, threat hunting, and the implementation of security measures to protect customer data. The ideal candidate will have extensive experience in security operations, particularly in Microsoft Windows and Azure environments, and will contribute to a comprehensive security program that mitigates risks and enhances trust with customers.
Responsibilities
- Install and maintain security products.
- Manage security information and event management.
- Oversee identity and access management.
- Respond to incidents involving malware.
- Address network-based attacks.
- Monitor system events, log files, and alerts.
- Utilize security orchestration and automated response (SOAR).
- Perform threat hunting activities.
- Develop metrics to measure malware analysis and detection system performance.
- Conduct research into malware development and trends.
- Perform incident response and/or digital forensics on hardware.
- Analyze network security alerts and events.
Requirements
- Security+, CySA+, or GSEC or equivalent certification required; SSCP or equivalent certification preferred.
- Demonstrable education and/or certification related to computer science, information security, server platform, or cloud environments.
- 5+ years of experience in Infrastructure and Information Security in Microsoft Windows and Azure environments.
- 3+ years working on Microsoft Azure running multiple production workloads.
- 2+ years of experience with Azure DevOps CI/CD pipelines and deployment automation security.
- 5+ years of experience with endpoint protection and management tools for Microsoft Windows, Apple macOS, and Apple iOS operating systems.
- Experience with hardening techniques for server operating systems and cloud architectures.
- Experience with access logging, centralized logging, and monitoring/alerting of security log events such as ELK, InsightIDR, Splunk, and SumoLogic; experience with Microsoft Sentinel is preferred.
- Experience with applications for monitoring infrastructure security and detecting intrusions through alerts, enrichment, and investigations.
- Experience with application security testing tools such as Burp Suite, OWASP ZAP, etc.
- Working knowledge of incident response, threat modeling, and mitigation.
- Working knowledge of common information security management frameworks such as AICPA's SOC 2 and NIST's Cyber Security Framework.
- Experience designing and implementing access control models for privileged access in a fast-paced production environment.
- Knowledge of security best practices such as CIS Benchmarks.
- Strong understanding of common internet protocols such as DNS, SMTP, LDAP, etc.
- Strong understanding of email authentication including SPF, DKIM, DMARC, etc.
- Self-motivated and strong sense of ownership of tasks and personal responsibility.
- Excellent project management skills with a track record of successfully delivering multiple projects on time and within budget.
- Exceptional problem-solving and decision-making abilities.
- Strong communication and interpersonal skills, with the ability to effectively interact with both technical and non-technical stakeholders.
Nice-to-haves
- Commitment to improving literacy and student reading achievement.
