Valiant SolutionsRemote
Endpoint Protection Security Engineer
United States of America
Full Time
2 weeks ago
$130,000 - $140,000 USD
No H1B
Key skills
PythonRubyPerlBashPowerShellKibana
About this role
Valiant Solutions is seeking an Endpoint Protection Security Engineer to join their innovative cybersecurity team. The role involves designing and implementing endpoint security solutions, troubleshooting IT security issues, and supporting a large enterprise environment. The successful candidate will work on both operational and project-based assignments, contributing to the security of a significant infrastructure.
Responsibilities:
- Scripting in PowerShell, bash, Perl, Python, or Ruby
- Designing and implementing endpoint security solutions in cloud and on premise data centers
- IDS/IPS Engineering & Operations: Installation/Configuration, patching and tuning IDS/IPS signatures, create and amend policies
- SIEM: monitor events and trends using Kibana
- Provide support for internal and external customers in a large enterprise environment
- Troubleshoot a range of IT security and connectivity issues
- Support other team members in troubleshooting and project efforts
- Manage hardware and software inventories
- Works with remote teams to install, maintain and troubleshoot security hardware
- Ensure customers receive top-of-the-line support in a polite and courteous manner
- Keep detailed records of customer interaction and problem resolution in a ticketing system
- Develop standard operating procedure and network topology documentation
- Participate in a rotating on-call schedule; every 6-8 weeks for a period of one week at a time
- Administer applications running on Linux and UNIX systems in virtualized and cloud environments
Requirements:
- 5 Years of relevant information technology experience
- B.S. in Computer Science, Information Systems, Mathematics, Engineering, related degree or an additional 3 to 5 years of relevant experience is required
- 5+ years of experience supporting Endpoint security tooling. The successful candidate will have proven experience in the configuration and administration of one or more of the following: Endgame / Elastic Defend, Carbon Black / Bit9, FireEye HX, or Elastic Security. Similar XDR/EDR products are also in scope, for example, EPO, Crowdstrike, and Sentinel. The candidate must be able to explain how they have implemented and advanced these tools within an organization. This is not just an operations position, the successful candidate will be responsible for making improvements. It is essential that the candidate can demonstrate their understanding of the following: Tuning endpoint security policies, How endpoint security rules work within operating systems, Identify gaps in endpoint security policy
- 5+ years experience with systems administration: The successful candidate must have experience with Windows and Linux/UNIX server operating systems administration. You must have strong command line experience with Linux or UNIX including OS installation and configuration, security hardening, patching and package upgrades and must have in-depth experience on IDS tool like Security Onion, Snort, OSSEC. The successful candidate will have detailed knowledge of Windows and Linux/UNIX systems events, and how certain event types can be used to identify signs of compromise
- 3+ years experience with threat identification and detection. The successful candidate will know what attacks look like within operating systems and machine forensic artifacts