Senior Cyber Security Engineer
Post Sale & Security – Security /
Full - time
Join the ControlUp team! We are looking for highly motivated professionals who are passionate about technology, enjoy working with customers, and who know how to have fun. ControlUp is the leading IT platform for managing, monitoring and troubleshooting virtualization environments and server performance.
ControlUp’s Security department is looking for a talented Cyber Security creative and problem solver to join us as a Cyber Security Engineer and help validate our services and environments according to the highest security standards.
The Cyber Security Engineer is expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security best practices.
The ideal candidate is highly motivated, demonstrating a ‘can do' attitude and need to have a combination of troubleshooting, technical and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and technical work. This role will provide career growth opportunity as you develop/acquire new security skills in the course of your duties.
Build & maintain ControlUp’s security monitoring program.
Assist in security incident response, incident investigations and technical risk assessment efforts.
Perform regular assessments based on best practices and changes in the threat landscape.
Identify IOCs and possible attack vectors that will be used to analyze and derive security monitoring and alerts.
Monitor, analyze, and triage security events to ensure we maintain a strong security posture.
Work with complex systems to conduct extensive research into current threat activity to determine customer-relevant threat intelligence.
Evaluate and leverage security-focused products and help develop ControlUp’s SIEM capabilities.
4+ years of information security hands-on experience.
In-depth technical knowledge of IT/DevOps systems and technologies.
Proven experience with one or more scripting language (e.g: Python).
Experience in writing automation (playbooks, scripts etc), dashboarding and alerting capabilities.
Experience in working and understanding AWS, Terraform, Containers, EDR and APIs etc.
Proven knowledge and skills in incident handling – OSX/Microsoft and Linux environment.
In-depth understanding & proven experience in SIEM technology (e.g Splunk)
In-depth SQL capabilities.
Experience in Incident response – Reporting, Time-lining, Forensics, Memory Forensics, and other artifacts forensics.
Ability to effectively prioritize and execute tasks.