Security Officer tasked with ensuring safety and access control at Sutter Health facilities. Providing assistance and investigating incidents, while ensuring a safe environment.
About the role
- Senior Security Engineer responsible for Cyber Defense program initiatives within the Security Operations Center and mitigating cyber threats while collaborating with internal teams.
Responsibilities
- Analyze threat intelligence data to understand adversary tactics, techniques, and procedures (TTPs).
- Rapidly analyze threat intelligence information within the context of the organization to assess potential risks, impact, and prioritize Security Incidents or important threat intelligence.
- Conduct threat hunting activities to identify and mitigate cyber threats.
- Collaborate with internal teams to enhance threat detection and response capabilities.
- Monitor and analyze security alerts from various sources to identify potential threats.
- Provide recommendations for improving security posture based on threat intelligence and hunt findings.
- Act as a senior technical resource in developing processes to proactively monitor, detect, and respond to security threats, including the ongoing refinement and enhancements of security controls and configurations for security monitoring systems.
- Monitor information security systems, alerts and indicators of compromise used to protect the network from attacks and identify compromised systems.
- Collaborate with Incident Responders to identify, develop, and implement incident response processes and procedures to mitigate security risks.
- Lead, develop, and mature the cyber threat intelligence function of the SOC.
- Identify, advise and contribute to system and alert tuning to ensure security related events are properly prioritized and addressed.
- Contribute to the ongoing development and enhancement of Cyber Threat Intelligence handling and associated CTI playbooks.
- Contribute to the execution activities in the areas of security risk identification, analysis, classification, and mitigation strategies.
- Advise customers on security requirements, internal security policies, and security best practices.
- Provide training and support related to security incidents, intelligence, and requests to other members on the team.
- Identify/receive problem, research alternatives, prepare analysis and determine best remediation actions to address issues at hand.
- Conduct risk assessments, interview internal and external customers to gain technical knowledge of security/compliance requirements.
- Develop and maintain threat intelligence reports and briefings; research and analyze data, report trends and vital information to management/business partner.
- Keep abreast of industry advancements and incorporate that knowledge into daily work activities.
- Research and stay abreast of emerging technologies, new vulnerabilities and exploits that may compromise internal systems.
- Track, analyze, and report security metrics and propose counter measures to address security trends that are not in line with company’s desire risk profile.
- Contribute to the evaluation, testing and implementation of new security systems and processes.
- Assist internal audit and disaster recovery activities as needed.
- Develop and maintain documentation for all assigned responsibilities.
- Required to perform duties outside of normal work hours based on business needs.
Requirements
- Familiar working in a Security Operations Center (SOC) environment, using and analyzing alerts from various systems such as SIEM, Cloud Services, Email Security Gateways, Endpoint Security.
- Knowledge of query languages for the purposes of AD-Hoc threat hunting, confirming detection controls, and deploying new use cases in response to emerging threats.
- Understanding of operational security best practices and use of common security technologies.
- Experience in implementing Information Security technologies and/or processes.
- Experience collecting, analyzing, and actioning cyber threat intelligence.
- Experience delivering cyber threat intelligence briefings to various audiences.
- Experience in product evaluations and analysis.
- Generally, requires a BS Degree in Computer Science, Information Technology, Telecommunications, or Electrical Engineering, or equivalent work experience.
- Must have minimum 5+ years information security experience.
- 2+ years of consecutive hands-on experience working in a SOC environment, utilizing industry leading network security monitoring technologies, application, web, database and Security Event and Information Management (SIEM), IDS/IPS, endpoint, email security gateways and DLP technologies.
- Certifications: Security+, GIAC, CEH, OSCP, CISSP preferred.
Benefits
- medical
- dental
- vision
- 401k
- PTO/paid sick leave
- employee stock purchase plan
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Mid - Level Security Design & Development Specialist at Boeing providing architecture and consultation expertise for enterprise directory services. Collaborating with senior technical experts in a fast - paced environment.
Delivery Lead responsible for end - to - end product delivery in the Physical Security Product Team at Wells Fargo. Collaborating with product managers and teams to foster high performance and customer value within agile frameworks.
Compliance professional managing global regulatory changes and providing advisory support. Joining a dedicated team within State Street, the role offers flexible hybrid work arrangements.
Focus Sales role at api GmbH, engaging clients and supporting Cloud business growth. Collaborate with teams for optimal client service and success in IT products.
Security Engineering Manager leading Detection & Response team at Snap. Overseeing security monitoring and team collaboration on high - impact initiatives.
Mid - Level Security Design & Development Specialist at Boeing involved in directory services infrastructure. Collaborating with a team of senior technical experts in a fast - paced environment.
Application Security Specialist conducting SAST and DAST analyses at TEHORA to enhance digital healthcare security. Responsible for code reviews, OWASP recommendations, and participation in intrusion tests.
Facilities and Security Coordinator providing operational support for facility operations at Westinghouse. Coordinating administrative tasks, reporting, and ensuring compliance in facility management.
Information Security Specialist ensuring digital security and compliance at cyberunity AG in Zürich. Collaborating with IT teams to implement security measures and address vulnerabilities.