Proficio is an award-winning managed detection and response (MDR) services provider. We provide 24/7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries.
We are seeking an energetic Security Engineer II to serve as a technical resource and leader. This position has two components and supports both our team that Onboards new customers and our MSS team that manages security devices for our customers.
Onboarding, 60% of this role:
This part of the position centers on security and availability of customer data as it is brought into the Proficio SIEM. The Security Engineer II will assist in working with new clients as they transition to our ProSOC service. This includes ensuring timely deployment of services, developing a personalized onboarding strategy for each customer, and auditing of systems reporting from the client to our Security Operation Center.
MSS device configuration/maintenance, 40% of this role:
This part of the position will help ensure delivery of our Elastic Stack Managed Security Services to meet or exceed the defined service levels of our clients. The Security Engineer II will respond to customer requests and act as a trusted technical resource for our clients while striving to maintain high reliability and performance within our customer’s environments. This position also includes managing and optimizing overall IT infrastructure and systems used in the delivery of our Managed Security Services.
Responsibilities
- Assist in the onboarding and implementation of ProSOC service and Managed Security Services solutions for Proficio clients across industries and geographic locations.
- Act as a technical liaison between Proficio and its customers during the onboarding process.
- Review technical security posture (network, application, and database) for existing and newly acquired businesses or services.
- Perform security reviews and monitoring of the production environment.
- Perform the installation and configuration of security monitoring tools in support of our ProSOC service.
- Use out of the box thinking as well as industry standard troubleshooting tools, such as Wireshark, TCPDUMP, and other tools, to facilitate onboarding of customer data sources.
- Work with senior staff to evaluate client security devices and make recommendations based on industry standards for security configurations.
- Assist Proficio engineering team with tasks related to the review and development of Managed Security Services related processes and procedures.
- Assist senior staff when they provide Subject Matter Expert (SME) services, engaging directly with clients to perform necessary research, answering questions and making recommendations based on industry standards and best practices.
- Participate in engineering team on-call rotation.
Minimum Qualifications
- A Bachelor’s degree in Information Systems, Business, Engineering, or a related field from an accredited institution OR equivalent experience.
- 4-5+ years’ experience as a Network Engineer or Security Engineer working with a broad range of technologies.
- Minimum 2+ years’ experience in Information Technology IT Security in a SOC or NOC environment working with a broad range of technologies highly preferred.
- Security certification required, such as Security+ and Network+. Security certification such as SANS/GIAC, CISSP, CISA, CISM are a plus.
- Basic Unix or Linux systems administration and command-line experience (Redhat/Linux, FreeBSD, Ubuntu, etc.).
- Experience with Windows Server security logs.
- Experience in the configuration and troubleshooting of IPSec VPN tunnels.
- Knowledge of network analysis tools, such as Wireshark and TCPDump and SCP.
- Knowledge of UNIX and Windows environments as may pertain to Network and Security tasks including syslog, DNS, load balancers and BIND, BigIP command line on BSD, Windows Event Log.
- Hands-on experience installing, configuring and administering network and security devices, applications and systems.
- General understanding of SIEM operations experience with Elasticsearch is a strong plus.
- Managed Services experience preferred with a customer-focused mindset that is willing to go above and beyond to satisfy a customer requirement absolutely required.
- Experience performing vulnerability assessment and remediation using products such as Qualys, Nexpose or Nessus is a plus.
- Proficient with Linux (scripting in Bash or Perl is required and Python is a plus).
- Vendor certifications from Palo Alto, Cisco, Juniper etc. are a plus.
- Effective time task management skills.
- Strong communications skills, both written and oral.
- Ability to participate in on-call rotation for after hours and weekend escalations.
Proficio is an EOE employer.