Seeking an experienced Security Engineer II that has Incident Response skills and experience. The engineer will be responsible for incident response, threat hunting, and data analysis to protect and maintain the overall security of the enterprise. In this role you will be responsible for leading investigations for all priority level incidents. You will drive the coordination, investigation, resolution, closure and reporting on security incidents as they are escalated or identified. Responsibilit... more details
Seeking an experienced Security Engineer II that has Incident Response skills and experience. The engineer will be responsible for incident response, threat hunting, and data analysis to protect and maintain the overall security of the enterprise. In this role you will be responsible for leading investigations for all priority level incidents. You will drive the coordination, investigation, resolution, closure and reporting on security incidents as they are escalated or identified.
Responsibilities
Assist in the content development within the SIEM Platform which includes use case creation, dashboard design, tuning of use cases to minimize false positives, development of reporting metrics such as SLA and KPI reports and log source configuration.
Threat hunting and independent threat research to augment and feed custom use case creation.
Lead a virtual team of Incident Response participants during times of active incidents.
Apply broad security industry, technology, business and professional knowledge to contribute to policy-making and process design;
Conduct incident and investigations post-mortem briefings, analysis, and reporting as required.
Research and stay current on the latest trends, best practices, and technology developments.
Analyze, troubleshoot, and investigate security related, information systems’ anomalies based on security platform reporting, network traffic, log files, host-based and automated security alerts.
Provide off-hours support on an infrequent, but as needed basis.
Establish and maintain a strong working relationship with all team members.
Own the incident handling process from identification to recovery, focusing on high-quality and exhaustive deliverables.
Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments.
Recognize and safely utilize attacker tools, tactics, and procedures.
Develop scripts, tools, or methodologies to enhance Amtrust’s red and blue teaming processes.
Provide mentorship and guidance for more junior contributors to security operations, while meeting project-oriented objectives.
Explore emerging cyber capabilities through research of next-generation analytics, machine learning techniques, and graphical relationship models.
Leverage advanced knowledge of security operations, cyber security tools, intrusion detection, and secured networks to integrate with the SIEM platform.
Provide CSIRT support as needed in response to information security related events.
Review and enhance logging information flow strategies and technical information flow required for log onboarding; create the work plan required for logging onboarding to include determining the technical details.
Qualifications
The candidate must also be available 24/7 in case there is a need to conduct an investigation off-hours.
Expert understanding of network architecture and security infrastructure placement.
1-3 years of demonstrated experience in Incident Response.
6 – 8 years of demonstrated security experience.
Understanding of threat modeling concepts such as threat indicators, threats actors and vectors is a plus.
Travel is at a minimum, but since this is an enterprise position, some travel is required.
Experience working in an Agile environment using Scrum.
#LI-GD1
#LI-HYBRID
What We Offer
AmTrust Financial Services offers a competitive compensation package and excellent career advancement opportunities. Our benefits include: Medical & Dental Plans, Life Insurance, including eligible spouses & children, Health Care Flexible Spending, Dependent Care, 401k Savings Plans, Paid Time Off.
AmTrust strives to create a diverse and inclusive culture where thoughts and ideas of all employees are appreciated and respected. This concept encompasses but is not limited to human differences with regard to race, ethnicity, gender, sexual orientation, culture, religion or disabilities.
AmTrust values excellence and recognizes that by embracing the diverse backgrounds, skills, and perspectives of its workforce, it will sustain a competitive advantage and remain an employer of choice. Diversity is a business imperative, enabling us to attract, retain and develop the best talent available. We see diversity as more than just policies and practices. It is an integral part of who we are as a company, how we operate and how we see our future.
Connect With Us!
Not ready to apply? Connect with us for general consideration.
Job Abstracts is an independent Job Search Engine. Job Abstracts is not an agent or representative and is not endorsed, sponsored or affiliated with any employer. Job Abstracts uses proprietary technology to keep the availability and accuracy of its job listings and their details. All trademarks, service marks, logos, domain names, and job descriptions are the property of their respective holder. Job Abstracts does not have its members apply for a job on the jobabstracts.com website. Additionally, Job Abstracts may provide a list of third-party job listings that may not be affiliated with any employer. Please make sure you understand and agree to the website's Terms & Conditions and Privacy Policies you are applying on as they may differ from ours and are not in our control.
Welcome to Job Abstracts
We would like to take a second to Welcome You to Job Abstracts, the nation’s largest Pure Job Board. With over 3.1 million job listings from 15,000+ Companies & Organizations, we help job searchers find careers that match their interests. As an anonymous user, you have probably discovered how easy our system is to use. However, you have just scratched the surface of what we can offer.
We encourage you to Register so you can use our most powerful features: searching with multiple terms, setting up multiple locations, establishing favorite companies, and accessing your search history. If you find a job you like, you can apply directly for it, and then, keep notes on it. We will also keep a lookout for jobs that match your search terms and email you when we find something you may like.
You can register for free and the system is free to use. If you like our system so far, click on Register and unlock the power required by serious job searchers.
Any time you conduct a search, the system shows you job matches, ranked by their Relevance Score (RS).
The score is calculated by a proprietary algorithm that uses Intelligent Machine Learning.
The Relevance Score tells you how well the job opportunity matches your search term or terms.
When not logged in, the system is limited to one search term. Scores for single term matches are usually lower.
When you register, log in, and set up multiple terms prioritized by importance, the jobs found for you will receive a much higher Relevance Score.