As a Tier 1 Security Engineer for the Security Operations Centre Engineering Team, you are a member of a team which manages IT security on behalf of customers to reduce the impact of security incidents and system compromises. As part of the team responsible for the 24×7 Security Event Management Service, you will be responsible to provide Administrative for up to 3 of the following technologies:
Mc Afee ESM, HP Web Inspect, HP Fortify, Nexpose, PaloAlto, Mc Afee NTBA, Mc Afee ePO, Mc Afee ATD, Mc Afee NSM, Iron Port, Imperva WAF, Blue Coat, Fore Scout (NAC), Tanium, Firemon, Fire Eye
TMG, Mc Afee App Control, Mc Afee TIE, Mc Afee DLP, Mc Afee, Mc Afee FIM, Mc Afee ELM, Mc Afee ACE.
Provide primary system administration and maintains assigned technologies.
Deploys, maintains, updates, and trouble shoots assigned technologies.
Verifies the backups of assigned technologies.
Monitors system health and Troubleshoots assigned technologies.
Creates change tickets and speaks as needed up to the change control board tickets related to assigned technologies.
Creates or responds to trouble tickets within client and corporate HG ticket systems.
Creates and maintains detailed documentation based on existing process and procedures for assigned technologies
Generates weekly and monthly metrics for client reports in relation to assigned technologies. Updates client portfolio information as needed for assigned technologies.
Transfers knowledge and or provides cross-training to other Herjavec Group Employees or client personnel as assigned by manger.
Responses to audit requests or findings related assigned technologies.
Ensures that critical events and alerts are escalated within customer SLA agreement and documented for the assigned technologies.
Performs security log analysis during Information Security related events, identifying and reporting possible security breaches, incidents and violations of security policies.
Performs daily health checks for assigned system and resolves system health issues as needed.
Participates in rotational on call duties.
Work to cross train on up up to 3 additional Information Security technologies that will be assigned by the direct Manger. As needed, you will be responsible for complete administration of those additional technologies.
Must have demonstrated knowledge and experience with three or more of the following:
· UNIX, AIX & Solaris
· Windows Server Operating Systems
· Internet Connectivity and Protocols (TCP/IP)
· Wireless Networking
· Network architecture best practices
· Security Operations Centre/Information Protection Centre/Computer Incident Response Centre
· Enterprise Security Information Management systems
· VPN Communication Protocols
· Switches/Routers (basic configuration)
· Network/System Intrusion Detection or Prevention Systems
· Understanding of basic security concepts: Principle of Least Access, Compartmentalization etc.
· Firewall (configuration knowledge)
· Asset Management
· Security threat and attack countermeasures
· Critical Thinking and Analytical skills
· Excellent written and verbal communication skills
· Strong troubleshooting and problem solving skills
· Team player with ability to work autonomously
· Ability to prioritize, and reprioritize work as required
· Ability to be on Call on a rotational basis.
· Must become Intel certified for NSM, EPO, ESM, and ACE within 3 months.
· Ability to obtain and maintain a Nevada, Marlyland, and Michigan Gaming licenses
Ensuring projects assigned to the Security Solutions Team are delivered to the customer in a satisfactory manner.
Ensure quality of documentation delivered by the team.
Work with PMO to ensure resources are assigned to the right projects.
Work with other departments as required to resolve customer issues.
Ensure Security Solutions Team is trained to deliver the technologies assigned to the group.
Develop relationships with vendors of the technologies assigned to the group. These relationships will be used to learn about new technologies from the vendors, training that is available, conferences offered by the vendor, and a way to escalate when issues arise in the delivery of projects.
Develop relationships with the individual team members on the Security Solutions Team.
Provide technical guidance and mentor members of the Security Solutions Team.
Develop progression plans to ensure technologies are covered.
Explain Herjavec Group direction to the Security Solutions Team.
Track team utilization and notify management of concerns in team utilization on a team, or individual basis.
Provide people management responsibilities to the Security Solutions Team, such as tasks related to vacation, lieu time, compensation, training, expenses etc. This includes co-ordination and approvals.
Co-ordinate and assign resources for projects, pre-sales tasks, and other initiatives associated with technologies assigned to the group.
Ability to communicate with a customer in a clear and precise manner.
Offer consultative advice in security principles and best practices.
Demonstrate problem solving skills that contribute towards the resolution of issues that arise.
Other duties as required
Desired Skills and Experience
College Diploma or University Degree in Information Security or equivalent work experience.
Minimum 2 years’ experience in a similar role.
Experience with any two or more of the following technologies:
Firewalls from Check Point, Cisco, or Palo Alto
URL filtering from Blue Coat, McAfee, or Websense
IPS from McAfee
Endpoint technologies from McAfee
Strong understanding of IT Security concepts.
Other Technical Qualifications:
Enterprise Security Incident Event Management (SIEM)
UNIX, AIX & Solaris, Linux, Windows Server Operating Systems
Network/System Intrusion Detection or Prevention Systems (IDS/IPS)
Vulnerability scanner/Penetration testing systems
Security Operations Centre/Information Protection Centre/Computer Incident Response Centre
VPN Communication Protocols
Switches/Routers (basic configuration)
TCP/IP networking, VPN, VLAN, NAT and security concepts
Security threat and attack countermeasures
Ability to conduct in-depth forensic analytical studies and investigations
The following will be considered an asset:
Holds certifications such as CISSP or up-to-date product specific certificates
Familiar with PCI and SOX compliance
Experience with customer facing engagements
Excellent communications skills with the ability to write reports
Excellent presentation capabilities to provide technical overviews to several levels of management
Ability to take ownership and co-ordinate resolution of network related problems
Outstanding analytical and methodical troubleshooting skills
Able to lead and manage multiple integration projects and priorities across the organization.
Demonstrates ability to solve technical problems and provides solutions to develop processes capable of meeting customer requirements
About Herjavec Group:
Dynamic IT entrepreneur Robert Herjavec founded Herjavec Group in 2003, and it quickly became one of North America’s fastest-growing technology companies. Herjavec Group delivers managed security services globally supported by a state-of-the-art, PCI compliant Security Operations Centre (SOC), operated 24/7/365 by certified security professionals. This expertise is coupled with a leadership position across a wide range of functions including compliance, risk management & incident response. Herjavec Group has offices globally including three headquarters in Toronto (Canada), New York City (USA) and Reading (United Kingdom). The organization recently entered the Australian market and plans to establish a local presence there over the coming months.