Cyber Security Engineer

Cyber Security Engineer Pay Rate $70.00/hour to $107.00/hour Duration 6 months

Location:

Raleigh, NC Hybrid position - 2-3 days in office but not a strict schedule Preferred skills: any experience with EDR tools like CrowdStrike, SIEM tool like Elastic, decent incident response and investigation skills, any information security certification will be great.

Description:

What we're looking for: A seasoned Cyber Security professional with a strong background in incident response and security operations. You thrive in dynamic environments and are passionate about safeguarding organizational assets from evolving cyber threats. With over 5 years of experience in a Security Operations Center (SOC) or Incident Response role, you possess a deep understanding of various security frameworks and are adept at correlating and analyzing data from multiple log sources. Your technical expertise spans across network protocols, data protection, and cloud environments, making you a versatile and invaluable asset to any security team. You are a proactive communicator, capable of articulating complex security issues to diverse audiences, and you are committed to continuous learning and improvement in the ever-evolving field of cybersecurity.

What You'll Be Doing:

• Leading investigations and serving as a subject matter expert while correlating data across multiple log sources and systems.
• Continually improving cyber security procedures and documentation to enhance the security posture of the organization.
• Communicating with users, vendors, and other IT personnel on security-related issues, providing expert guidance and support.
• Staying up to date on evolving cyber threats, identifying their impact, and detecting them in our environment.
• Managing infrastructure security systems such as HIDS/NIDS, SIEM, NGAV, EDR, UBA, WAF, DLP, and vulnerability management tools to meet regulatory requirements.
• Collaborating with business groups to establish and maintain strong working relationships.

The Impact You Will Have:

• Enhancing the overall security posture by leading critical incident response efforts.
• Reducing the impact of cyber threats by investigating and responding to security incidents swiftly and effectively.
• Improving the security infrastructure and ensuring compliance with internal and external regulatory requirements.
• Providing expert guidance on security-related issues, fostering a culture of security awareness and best practices.
• Driving continuous improvement in cyber security procedures and documentation, contributing to the organization's resilience against cyber threats.
• Staying ahead of evolving cyber threats and ensuring that the organization's defenses are robust and up-to-date.

What You'll Need:

• Strong written and verbal communication skills, with the ability to establish and maintain strong working relationships with business groups.
• Working knowledge of Data Loss Prevention concepts/products, Data Encryption concepts, and endpoint management.
• Technical knowledge of common network protocols and design patterns including

TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS.

• Familiarity with various cloud environments (AWS, Azure, O365).
• Understanding of MITRE ATT&CK and NIST Cyber Security Frameworks standards and requirements and ability to apply them to an enterprise environment.
• In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems.
• Functional and practical experience with at least one development or scripting language/framework (e.g., PowerShell, Python, .Net) and regular expressions.
• Bachelor's Degree in Information Security, Computer Science, or equivalent combination of education, training, and experience.
• Hold or willingness to obtain certifications such as GCIH, GCFE, GCFA, GCSA, GMON, CISSP, or other relevant security certifications.
• Fluent in writing, reading, and speaking English.