Description
The Production Security Operations team is looking for an Information Security Specialist. The team is responsible for implementing and maintaining Cyber and Infrastructure Security tools, Tier-3 Security analysis and response, and Infrastructure Security Administration.
You will implement, maintain, integrate, tune and evolve the Cyber and Infrastructure Security tooling in response to emerging threats and to proactively enhance the security posture. You will use the tools and capabilities to lead and support the SOC in tier-3 investigations, in response to vulnerabilities or other threat intelligence.
Responsibilities:
- Participate in and/or lead vulnerability assessments and threat Intel assessments
- Lead complex investigations and support the SOC in investigations
- Engage with IT in delivery of security projects, by providing operational requirements, reviewing designs, participating in Proof-Of-Concepts and technology assessments and selection
- Develop custom alerting and report using Cyber & Infrastructure Security tools, integrate tools as needed, maintain, tune and support the tools in response to the needs of the SOC
- Work with the Red Team in designing Cyber BCP exercises, as well participate in the Blue team in response to Red Teams
- Scripting for automation of analysis as well as integration between tools when needed
Qualifications:
- Bachelor's degree in Computer Science or related disciplines
- Hands on engineering experience with deploying, configuring and maintaining Cyber Security and
- Infrastructure Security Tools highly desired including nIDS (Snort), Splunk, Bluecoat products, FireEye, and Balabit SCB
- Strong foundational knowledge of Unix, Windows and IP Networking
- Experience with vulnerability assessment and mitigation
- Excellent analytical and problem solving skills, and ability to conduct complex analysis on large data sets
- Continuous Improvement mindset
- Strong communication skills, written and verbal
- Self-driven and a good team player
- Relevant security certifications such as SANS certifications will be considered an asset
- Must be authorized to work in The Netherlands