This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

Find jobs in California today!

To post a job, login or create an account |  Post a Job

  Jobs in California  

Bringing the best, highest paying job offers near you

previous arrow
next arrow
Slider

Cyber Security Engineer

Mumba Technologies, Inc.

This is a Contract position in Los Altos, CA posted May 2, 2021.

Job Title: Cyber Security Engineer

Location: Los Altos, CA

Duration: Long Term Contract

 Job Description

Escalated Events & Incident Response

  • Review incident logs from Crowdstrike and G-Suite for marked spam, phishing etc, to ensure new domains are investigated and blocked, on G-Suite and on the Palo altos
  • Investigate and recommend remediation in an incident report to help address impacted users/devices
  • Assist team members or lead in issue resolution
  • Ability to respond to incidents and document them
  • Internal usage for new software and Software-as-a-Service security assessments

  • Review new internal software and Software-as-a-Service security assessment asks, Document and evaluate the use case and enable the requestor with options if the requested software isn’t secure or not recommended by InfoSec
  • Provide security assessment on application architecture when requested covering, transport layer design, identity and data design to ensure proper security controls are enabled
  • Detailed Third party review with NIST, CIS and ISO, CMMC controls and document it and manage the lifecycle of use of the third party
  • Vulnerability Management

  • Work with IT on CVEs, IOC etc after doing our initial analysis and looking at logs and traffic. Present a clear plan on how remediation will be executed
  • Review patching vulnerability management cadence on end-points and provide risk analysis by threat surface
  • Work well with vendors and scope out work and help with remediation and delivery
  • Good knowledge of OS hardening and how to check for them with new OS release and security implications
  • Continuous Monitoring
  • Run DAST scans using Rapid 7 and monitor domain scores in Scorecard regularly and put controls in place to enable safety
  • Review traffic logs and ensure IDS and IPS rules are updates and are collecting logs being aggregated in Graylog
  • Look for traffic patterns and detect anomalies
  • Review G-Suite logs and alerts
  • Review System Event Graylog logs regularly to understand system patterns based on usage
  • Work closely with the cloud team to review and recommend AMIs and check the status of guard duty logs, the number of instances, and S3 buckets. How are they configured and what are our risks and provide a plan for remediation?
  • Run Qualys and Rapid 7 scans regularly and compare against CMDB entries in Service Now
  • Training & Awareness

  • Assist the team in driving pen-test engagements and other InfoSec events to increase Cyber security awareness
  • Help and run phishing campaigns, study the results from the campaigns, and identity ways to help educate the company
  • Assist with putting together and delivering security training for InfoSec tools, processes etc
  • General Duties

  • Be a subject matter expert in one of the many domains and support the team (network, applications, cloud, devices)
  • Be able to professionally and effectively communicate with leaders, users and team mates
  • Design and architect security systems as needed and support and manage them as needed
  • Track requests and provide assistance with metrics gathering or presentation and make appropriate callouts based on the infosec metrics
    • Regularly review RBACs and 
    • Continuously look at existing device, app and network controls and identity areas for improvement using CIS controls as a baseline and adapting them
    • Encryption fundamentals at app and device level knowledge are good to have.

     

    Tools to Know

    G-Suite Administration, Graylog, Palo Alto firewalls, Meraki, Cisco DUO, okta, scorecard, knowbe4,crowdstrike, Qualys, Rapid7, Service Now, Automox, bit locker, proofpoint, ZenGRC/Prevalent/ArcherRSA

    Frameworks to know

    NIST, CIS, SOC audits and ISO

    Soft skills

    Team player, active collaboration, ability to listen and understand the user, customer first attitude, passion for InfoSec and enjoys being a hands-on technical person, ability to right size by environment, enabler Vs.blocker mindset, detail oriented, effective communicator

    Preferred Certifications: CISSP, CISA, AWS Security Architect

    AL Jobs AR Jobs CA Jobs GA Jobs KS Jobs KY Jobs LA Jobs MD Jobs MI Jobs MN Jobs MS Jobs MO Jobs NY Jobs OR Jobs TN Jobs TX Jobs UT Jobs VA Jobs WV Jobs ID Jobs