Senior Security Engineer

Job Description: Position Summary: The Security Engineer, Senior is a member of the Information Security team in the Technology Division (IT). This highly motivated individual will be a vital member of the incident response lifecycle and assist in threat mitigation and security investigations. The primary objective is to ensure timely detection and response of any potential attacks/intrusions or malicious/anomalous activities involving ETS's intellectual property, networks, and sensitive data. Additionally, the Security Engineer, Senior contributes to IT Security operational efficiency by providing guidance and technical decision-making expertise to cross-functional teams within the organization.

• Participate in the development of Systems Engineering departmental architecture, standards and guidelines
• Plan, coordinate and execute newly proposed as well as ongoing departmental processes and projects
• Define, identify and classify information assets, assess threats and vulnerabilities regarding those assets, as well as recommend appropriate information security controls and measures.
• Detect, analyze, respond to, and participate security incidents, including Application and Network attempted and realized breaches.
• Participate in incident response. The incident response will include host and network based log analysis, correlation of network indicators, PCAP data, incident timeline generation, and root cause analysis among other data sources.
• Correlate event data for IDS systems, Firewalls, Secure Web Gateways, SIEMs, and other security systems for potential threats.
• Research and identify key indicators of compromise (IOC) on the network, servers, and end user workstations.
• Investigate and analyze causes, patterns and trends that can pose a risk to data integrity and information systems
• Investigate security breaches and create actionable plans to address risks
• Prepare detailed written analyses of incidents with remediation and prevention documentation.
• Provide briefing of findings to both technical and non-technical senior management audiences and business stakeholders.
• Maintain current knowledge on a wide range of security issues including architectures, firewalls, electronic data traffic and network access.
• Stays current with security technologies and makes recommendations for use based on business value
• Diagnose, report, solve and document and/or escalate technical problems
• Investigate critical technical challenges pertaining to new and established projects within security
• Participate in the project planning process and provide innovative recommendations for process improvements
• Participate in strategic planning activities
• Continuously identify process risks or gaps and offer solutions to address these problems
• Maintain knowledge of relevant industry developments and trends and share knowledge with team members
• Provide technical expertise on SE systems, processes, products and services
• Adhere to ethical standards and comply with the laws and regulations applicable to your job function

• A bachelor's degree in Computer Science or an equivalent combination of education and experience from which comparable knowledge and abilities can be acquired. Relevant work experience in fields such as (Engineering, networking, programming, cybersecurity, network or systems administration, IT support, data analysis, information technology or systems) is desirable.
• GCIH Certified Incident Handler is desired.

• 2-4 years of progressively responsible experience in an Information Security and/or Risk Management environment for mid to large sized organization with familiarity of industry-standard security solutions
• Cloud Security experience a plus

• Demonstrated competency pertaining to cyber threats, information security, and monitoring and detection
• Strong knowledge of incident response processes (detection, triage, incident analysis, remediation and reporting)
• In depth technical expertise and knowledge of specialty
• Ability to analyze different data types from various sources and draw conclusions regarding past and potential current security incidents
• Ability to work independently
• Strong analytical and problem-solving skills
• Excellent verbal and written communication skills
• Extensive understanding of ETS's goals, objectives and operating systems