Vacancy expired!
Security engineer responsible for the implementation of deception/honeypot tooling and use cases including agent/decoy deployment, tool configuration, campaign implementation, documentation, and SEIM integration. We are looking for someone with 6-8+ years' engineering experience, able to function as an independent, engineering SME on the team.
Responsibilities:- Implement honeypot and deception platform following industry best practice, provide SME level knowledge
- Facilitate deployment of endpoint agents, perform agent configuration, testing, certification, and documentation
- Collaborate with Security / Threat teams and End User Computing teams to define targets and coordinate deployment
- Configure honeypot/decoy servers to meet threat-based use cases, deploy, document, and support campaigns
- Configure SEIM integration, manage data feed and alert configuration
- Establish product support procedures, oversee L1/L2 teams and provide L3 support
- Honeypots, deception technologies (Attivo experience prioritized)
- In-depth knowledge of network and endpoint deception challenges, technologies, and tools
- Endpoint security agent packaging, testing, deployment, and support
- Network Security tooling implementation & operational support (L3)
- Strong understanding of networking and architecture principles, cyber threats/attacks
- ITIL process awareness and knowledge of CMDB, change & incident management
- Nice-to-Have Skills:
- Additional Experience: Windows, Unix, Splunk, Coding
Vacancy expired!