Added: March 14th 2023
Principal Cyber Defense Engineer | Principal Engineer, Cyber Defense
100% remote with a great package and career prospects.
Exciting new opportunity for an experienced Principal Cyber Defense Engineer to join an established global media and information services company.
The role reports to a super inspiring Director who is passionate about people development and empowering his team.
Sound exciting?
The core remit of this role is to play a key role within the global cyber defense team to advance the in-house threat detection and response capabilities, providing support to the cybersecurity program initiatives focusing on reducing our cyber risk exposure.
Primary objectives for this role will be to minimize the impact of active security incidents through innovative approaches to incident response and to minimize the probability of security incidents through proactively improving their ability to prevent, detect, disrupt, investigate, respond to, and recover from cyber attacks
Headlines on the role:
- Engage in ongoing research in security tools, techniques, and procedures, as well as advanced Threat Detection initiatives based on aggressive security principals, machine learning algorithms, and threat mitigation techniques.
- Engage in project and development activities to ensure threat monitoring capabilities are identified and are being addressed through the project process/SDLC. Input security requirements and ensure they are met.
- Partner with the automation team to design and implement orchestration and automation technologies in the event analysis/ incident response process.
- Design war-gaming and tabletop activities as part of red/blue team exercise to strengthen and test playbook health, maturity, and relevant documentation.
- Assist in developing complex incident response techniques based on analysis of evidence, review analysis and conclusions of other team members.
- Assist in providing subject-matter expertise during incident response engagements to understand, mitigate and remediate threats and risks impacting News Corp.
- Develop 'threat hunt missions' using threat intelligence, analysis of anomalous log data and results of brainstorming sessions to detect and eradicate threat actors on the News Corp network.
- Lead and/or support major projects, including new initiatives, new products and integration to help drive security best practices.
- Act as a third level escalation, mentoring security engineers on risk management, information security controls, incident analysis, incident response, SIEM monitoring and other operational tasks to support technologies managed by the Cyber Defense Center.
- Regularly recommending and implementing new Cyber Defense practices and approaches to address improvement including authoring SOPs and training documentation
What you need to bring to the role:
- Ability to plan, prioritize and complete your own work, whilst remaining a team player Ability to interact successfully with all levels of management.
- Experience with scripting languages to automate repetitive analysis and tasks using SOAR platforms.
- Experience with security tools including Wireshark, nmap, burp, Snort, and Kali.
- Demonstrable competency with InfoSec fundamentals including Lockheed Killchain and MITRE ATT&CK-based analytics
- Experience with threat intelligence standards such as STIX, TAXII, and CybOX
- Demonstrable Threat Hunting experience
- Working engineering experience with Cloud service providers (AWS, GCP, Azure)
- Demonstrable Incident Response Workflow experience. Fundamental understanding of InfoSec threat sharing including IoCs, artifacts, and forensic techniques.
- Ability to self-manage workload and goals independently in a fast-paced, multi-threaded, and deadline-driven organization
The role is 100% remote and offers a highly competitive salary + annual bonus + benefits
For a confidential conversation please contact me directly at rfraser@crestwoodsearch.com