IT Security Engineer (100% Remote for now, will require Relo to Glendale, AZ Post Covid)

Our customer offers automobile, homeowners and other personal lines of insurance to members across 23 states and the District of Columbia. For decades, they’ve brought peace of mind to members by looking to protect their belongings, find solutions to problems, settle claims and get their lives back on track. With more than 100 years of history, our Customer is one of the most trusted brands in America.

Our customer is looking for an IT Security Engineer on a contract to hire basis to help support their Cyber Defense Services Threat Intel Group. As an IT Security Engineer you will be responsible for developing actionable intelligence on advanced cyber threats to our services and our customers. The Cyber Defense Services Threat Intel Group collects indicators and intelligence from a variety of internal and external sources and use that information to develop an understanding of high grade actors and their tools, techniques, and procedures. The then bring to bear that understanding to purposefully identify and mitigate malicious activity.

***This position will be remitted while Covid restrictions are in place. The expectation is for the candidate be on site at our Customer’s Glendale, AZ office. ***

What You’ll Do: 

• Perform deep dive analysis of malicious artifacts. 


• Analyze large and unstructured data sets to identify trends and anomalies indicative of malicious activities. 


• Create security techniques and automation for internal use that enable the team to operate at high speed and broad scale. 


• Provide situational awareness on the current threat landscape and the techniques, tactics and procedures associated with specific threats. 


• Pursue actionable intelligence on current threats as they relate to company IG.


• Periodic on-call responsibilities.

The successful candidate will be required to analyze indicators to generate actionable intelligence and insight into current threats. He or she will help enhance our capabilities by formulating new analytic techniques and working across teams to drive the supporting capabilities. A deep understanding of current APT actors and TTPs as well as experience performing question driven analysis is required. Candidates should have a solid grasp of network and host based indicators and how to best use them. He or she should be able to script and help automate recurring tasks to improve the overall effectiveness of the team. An understanding of operating systems internals will be an asset.

Must Haves: 

• Strong knowledge of common vulnerabilities and exploitation techniques.


• Understanding of basic network, platform and authentication technologies such as LDAP and TCPIP. 


• Proficiency with at least one scripting language (e.g.: Perl, Python, PowerShell)


• Ability to weigh business needs against security concerns and articulate issues to management.


• Experience with vulnerability assessment and policy compliance tools


• Experience Network, operating system, and application security tools sets.


• Able to work with a changing schedule that includes standard or non-standard business hours of work.


• Solid understanding and technical expertise in security architecture

Education: 

• BA with undergraduate focus in Finance, Statistics, Economics or related field. MBA preferred.


• 2 years experience with tracking APT groups and other high grade threats. 


• 2 years experience in system, network, and/or application security. 


• 2 years experience building automated tools in C, C++, Java, Python, Perl, PowerShell, or Ruby. 


• 1 year experience with SQL or other query languages.


• GCIH Certification Preferred

 Hours & Location 

M-F, 40 hours/week. This position will be remitted while Covid restrictions are in place. The expectation is for the candidate be on site at our Customer’s Glendale, AZ office.