Vacancy expired!
Location: Marlborough, MA Duration: Full time / Perm Rate/Salary: negotiable We are seeking a Cyber Security Engineer II with strong analytical skills and a detailed understanding of cybersecurity methodologies, who will be part of a cyber security team that is helping utilities secure the critical infrastructure electric power grid by identifying and providing security patches and workarounds for vulnerable grid cyber assets. The cyber security engineer will perform real-time proactive security monitoring and reporting on various security enforcement systems, such as SIEM, log management, anti-virus, Internet content filtering/reporting, malicious code prevention, IDS & IPS, etc. Perform the role of primary Incident Coordinator for security events requiring focused response, containment, investigation, and remediation.
As well as maintaining an understanding of threats, vulnerabilities, and exploits that could impact grid assets, the Cyber Security Engineer will also contribute to cyber security assessments of new and existing products in conjunction with Engineering. To ensure success, a Cyber Security Engineer must display an excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits. Top candidates will be comfortable working with a variety of technologies and troubleshooting security problems.This role will be based in our Marlborough, MA office reporting to the Senior Director of Solutions.ESSENTIAL JOB FUNCTIONS 1. Analysis and Reporting - Identify, analyze, and report on the following: a) relevant security patches and software updates b) cyber threats c) System security monitoring data2. Project Work a) Work as part of a project team in delivering security patches to customers b) Work with Engineering on various security related issues c) Participate in security product development by contributing to requirements, testing and insights d) Contribute to system security improvement projects3. Customer Service a) Interact with customers on security analysis products b) Assist customers in developing and applying workarounds for vulnerabilities c) Assist customers in applying and testing security patches4. Incident Response a)Utilize security tools to monitor threat environments b) Develop and maintain incident response playbooks c) Coordinate incident response procedures d) Responding to all system and/or network security breaches5. System Design a) Assist with the design and development of security monitoring systems b) Assist with the design of controls to reduce attack surface c) Help design controls to limit damage from intrusions and maintain continuity of operations d) Troubleshoot security and network problems e) Testing and identifying network and system vulnerabilitiesEDUCATION: Bachelor's Degree in Computer Science, Information Technology, Cybersecurity, Electrical Engineering or related fieldREQUIRED EXPERIENCE: • Bachelor's degree and minimum 2 years of experience as a security analyst or security engineer working with incident detection, incident response, and forensics • Alternatively, a Master's degree in the above mentioned areas of study, plus the equivalent of 1 year related work experience (internships and experience within education considered) • Experience with tools such as Wireshark, nmap and Nexpose; log management platforms; and security management platforms • Self-starter and independent worker with ability to multitask and prioritize • Meeting deadlines while under pressure • Display professionalism and ability to work with team members of varying levels of expertise • Familiarity with Linux environments, basic working knowledge of security testing tools like Kali Linux, BurpSuite, Nmap, ZAP, Nessus, Wireshark • Experience with Python, C, Java, Power Shell • Conduct security assessments and vulnerability scans on infrastructure and products, and work with application owners on remediation • Experience with security for embedded devices • Demonstrate good knowledge of the latest security vulnerabilities, threats, attack surface, and remediation techniquesPREFERRED EXPERIENCE (Not Required): • Master's degree in computer science with cyber security • Experience in NIST, ISO 2701 or NERC CIP implementation • Relevant Security-related certification, e.g., Security+ • Familiarity with information security exploits, threats, and adversarial tactics, e.g., OWASP Top 10, MITRE ATT&CK • Familiarity with security best practices, standards, and frameworks, e.g., CSA Controls Matrix, NIST CSFKNOWLEDGE, SKILLS & ABILITIES: • Demonstrated skills and knowledge of security concepts including TCP/IP, Network and System Vulnerabilities, Basic Security Controls (e.g. Endpoint Security, Firewalls, vulnerability scanning), Basic Security procedures (patching, system hardening etc.), Fundamental understanding of a secure software development lifecycle • Great awareness of cybersecurity trends and hacking techniques • Strong attention to detail with an analytical mind and outstanding problem-solving skills • Strong written and verbal communication skills to clearly convey analysis • Perform technical security assessments • Good understanding of Linux & Windows based systems security, Azure security, and web application security • Ability to collaborate across functions • Keep abreast of changes to security industry best practices, applicable laws, and security alerts from relevant vendors and sources (ex: US-CERT)Why Kelly ® ?By partnering with Kelly® Technology, you'll have direct connections to top companies around the globe-giving you the chance to put your tech skills to work on some of today's most intriguing, innovative, and high-visibility projects. In a world where change is the only constant, our unparalleled connections and IT market expertise help you take your skills exactly where you want to go. We're here to help you gain experience, keep learning, and move your career forward.About Kelly ® At Kelly, we're always thinking about what's next and advising job seekers on new ways of working to reach their full potential. In fact, we're a leading advocate for temporary/nontraditional workstyles, because we believe they allow flexibility and tremendous growth opportunities that enable a better way to work and live (plus, did we mention we provide a ton of benefits ?). Connecting great people with great companies is what we do best, and our employment opportunities span a wide variety of workstyles, skill levels, and industries around the world. Kelly is an equal opportunity employer committed to employing a diverse workforce and providing accommodations for people with disabilities in all parts of the hiring process as required under its Employment Accommodation Policy. Kelly will work with applicants to meet accommodation needs that are made known to Kelly in advance.Vacancy expired!