Security Operations Engineer

Granicus   •  

Saint Paul, MN

Not Specified years

Posted 176 days ago

This job is no longer available.

Job Description

The Security Operations Engineer is the primary point of contact for resolving day to day security issues in the Granicus computer environments. This individual will work with the Operations Team to resolve potential threats and will proactively manage the security posture of the organization.

What You Get To Do:

  • Conduct vulnerability scanning, analyze identified vulnerabilities, prioritize and differentiate between real vulnerabilities and false positives, identify remediation options, continually identify and enhance vulnerability management processes and procedures working with appropriate teams to establish best practices for vulnerability remediation
  • Provide on-site and on-callsecuritysupport for critical/high security incidents
  • Respond to security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security
  • Regularly monitor common vulnerability and security sites including viruses and other malware (e.g. SANS, US-CERT, etc.) and recommend when critical patches should be deployed or system configurations updated. Routinely perform research and analysis on newly discovered vulnerabilities to determine the potential impact to the enterprise
  • Provide supportresponding to alerts and entering trouble tickets, monitor for networksecurityevents, complete pre-defined security analysis activities, perform level 1 security diagnostics and triage and escalate issues according to standard operating procedures
  • Perform basic analysis of log files, includes basic forensic analysis of system resources (memory, running processes, network packet captures, etc.)
  • Annually attend training focused on vulnerability management, malware or security incident response

Skills & Requirements

What We Need In You:

  • Technical Degree in Computer Science or related field & 2+ years of equivalent experience
  • Background with scripting, log analysis tools, and patching tools
  • Exposure to Computer Security Incident Response and SIEM event correlation
  • Working knowledge of technical security solutions such as IDS/IPS, secure remote access, firewalls, encryption, VPNs, secure protocols, data protection, data loss prevention, behavioral malware detection
  • Strong interpersonal skills
  • Ability to build relationships through an organization
  • CISSP is a plus