Security Support Engineer - job id 32358


Your Way To Work™

Security Support Engineer

$$$$$$$$

Downtown, NYC - Financial District



How to Apply

logo

Scott Eliot


logo

(646) 876-9552


logo

(212) 616-4800 ext-360




A Contract position at a global financial services firm.

Pay Options: IC - Self Incorporated or w2.

Contact Scott Eliot. call (646)876-9552 / (212)616-4800 ext.360 or email scott@sans.com with the Job Code SE32358 or Click the Apply Now button (Sorry, NO 3rd Party (Subcontract) or 1099 for this position!).

Location: Downtown, NYC - Financial District.

Skills required for the position: LINUX ADMIN, SECURITY, PYTHON, SHELL, SQL, SPLUNK, ENTERPRISE SECURITY, ETL, CISSP.


Detailed Info: Change management Prepare, document, implement and verify changes including communicate changes to end-users and other impacted parties


Incident, Problem managementoConduct Root Cause Analysis (RCA), respond to incidents and participate in post mortem analysis.

Tooling

Design and implement monitoring solutions on various platforms

Handle complex reporting requests from senior management and regulators

Automate repetitive and manual processes

Product onboardingoWork on defining Roles & Responsibilities (RACI) by designing and implementing a support modeloBuild functional QA/UAT environments and train L1/L2 teams

Infrastructure support

Manage code-base and configuration via various version control systems

Development/Computing Environment: 5-8 years experience (IT Security)

Linux administration

At least two of the following programming languages perl/python/shell/sql

Experienced with regex and various parsing methods

Direct experience as a Splunk administrator

Familiar with Splunk architecture and its various components (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder.

Experience with Splunk Enterprise Security (ES)

Building complex queries and optimize searches for better performance.

Creating and managing app, Create user, role, Permissions to knowledge objects.

Developing Field Extraction, Transformation and Loading (ETL) processes

Skills Desired

SIEM technologies: Splunk, ArcSight, QRadar

Security Certifications: CISSP, SANS (GCIA or similar).

The position offers competitive rate.


Job Id: 32358