Job Description

Job Description
The Senior Security Operations Engineer (SSOE) will make things more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing highly sensitive data. They will be a subject matter expert and technology leader in the security space with strong foundation of network security, including IDS/IPS, firewalls, and DDoS mitigation techniques. The SSOE is part of the ABM IT Security Operations team and is responsible for maintaining system security and data integrity. The SSOE is responsible for protecting all sensitive information within the companys domains and for ensuring all ABM computing environments have adequate security to prevent unauthorized access. The SSOE should be able to analyze ABMs security measures and determine how effective they are. They should also be able to identify anomalies and gaps by, but not limited to, monitoring logs for events, investigating incidents and providing detailed forensics. The SSOE should have knowledge of operating systems, databases, and web applications and be comfortable working in a highly virtual environment. This position will also assist ABM IT Staff & Management, as directed.

Engineering, implementing and monitoring security measures for the protection of computer systems, networks and information

* Identifying and defining system security requirements
* Designing, building, testing, and implementing security systems within an organization's IT network.
* Prepare and document standard operating procedures and protocols
* Configure and troubleshoot security infrastructure devices
* Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
* Ensure that the company knows as much as possible, as quickly as possible about security incidents
* Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement
* Considered a subject matter expert in their field and is expected to stay current with various technologies, organizational goals and industry trends to drive value. Provide operational management and engineering of Firewalls, IDS/IPS
* Provide technical expertise and guidance for the configuration and installation of new network and security technology
* Provide 3rd level engineering support to infrastructure operations staff and end users
* Provide technical expertise for Microsoft operating systems, including Server 2008 R2 and Server 2012
* Install, configure, and support other technologies, as directed
* Work with ABM IT Project Management Office (PMO) on all assigned projects, where appropriate
* Work with 3rd party vendors to complete projects or troubleshoot issues, as assigned
* Report weekly status on projects to designated ABM IT management
* Attend weekly staff meetings
* Work with Senior Systems Administrators/Engineers and any required 3rd parties to troubleshoot issues
* Follow all Change Management Policies and Procedures
* Other duties as assigned
* In addition to regularly scheduled hours and responsibilities, SSEs are sometimes required to assist on special projects and emergencies. This includes, but is not limited to, regularly scheduled evening or early morning maintenance in the Data Center and emergency response at any time (24x7). These additional responsibilities are an essential function of the job and are required to ensure continuous operations and minimize disruption to end-users.

Minimum Requirements

* High school diploma or equivalent is required.
* Bachelor's Degree in Computer Science or related field is preferred.
* Industry certification highly desirable CCSA/CCSE, CISSP or GIAC
* 10+ years as a security engineer in large enterprises
* 10+ years network security experience
* 10+ years broad based IT security infrastructure knowledge and experience across multiple domains (security, networking, server/storage, telephony, databases, etc.)
* 5+ years solutioning cloud security solutions
* Proven work experience as a system security engineer or information security engineer
* Knowledge of Windows and virtual environments (VMware or Hyper-V)
* Experience in building and maintaining security systems
* Hands on experience in security systems, including but not limited to (firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.)
* Thorough understanding of the latest security principles, techniques, and protocols, for example, (Ethical Hacking, Penetration Testing, Intrusion Prevention, Incident Response, Computer Forensics, Reverse Engineering)
* Demonstrated experience with Network Services and Network-related disciplines in architecture and engineering required
* Strong knowledge of high-level architecture and technical in-depth knowledge of Cisco ASAs, Firepower, Palo Alto, Cisco switches and routers, Knowledge of third-party reputational blocking services, Network Security, and DDOS mitigation techniques.
* Experience with Microsoft Security stack including but not limited to, Defender for Identity, AzureAD identity protection, Windows Defender ATP, Azure Sentinel, Cloud App Security, Conditional Access, Microsoft AIP/MIP, DLP, SSO, MFA.
* Experience with Cisco Security stack including but not limited to AMP for Endpoints, Umbrella, Stealth Watch, Tetration, Threat Grid, Threat Response, SecureX.

Language/Writing/Communication Requirements:

* Excellent written and verbal communication skills are required.
* Strong analytical and critical thinking skills are a must.
* Strong problem-solving skills required.
* Strong organizational and multi-tasking skills required
* Problem solving skills and ability to work under pressure
* Technical leadership and exposure across a broad scale of security tools and technologies
* Ability to collaborate with other teams on designs and specifications for cross-functional technical solutions.
* Stay current on developments and trends in network security and assigned business domain through networking, continuing education, and industry/technology publications.
* Ability to work on projects in team setting
* Ability to communicate program standards and technical/functional requirements to others