Nisum Latam

Senior Security Engineer en Nisum Latam

FULL_TIME

  Remoto (Sudamérica) | Expert | Full time | Ciberseguridad

29 postulaciones
Revisado por última vez hoy
Postular
Requiere postular en Inglés

Nisum is a leading global digital commerce firm headquartered in California, with services spanning digital strategy and transformation, insights and analytics, blockchain, business agility, and custom software development. Founded in 2000 with the customer-centric motto “Building Success Together®,” Nisum has grown to over 1,800 professionals across the United States, Chile,Colombia, India, Pakistan and Canada. A preferred advisor to leading Fortune 500 brands, Nisum enables clients to achieve direct business growth by building the advanced technology they need to reach end customers in today’s world, with immersive and seamless experiences across digital and physical channels.

Nisum is an Equal Opportunity Employer and we are proud of our ongoing efforts to foster diversity and inclusion in the workplace.

Job functions

  1. Responsible for managing the Security Information and Event Management (SIEM) system, including creating and tuning alerts, developing use cases for threat detection, managing threat feeds, and overseeing case and incident management.
  2. Work with Endpoint Detection and Response (EDR) solutions to secure endpoints, as well as manage other endpoint security tools like CAS (Content Addressable Storage), IDS/IPS (Intrusion Detection/Prevention Systems), and DLP (Data Leakage Protection) solutions.
  3. Oversee the configuration and management of network-based security devices such as firewalls, routers, and switches, ensuring that they are properly configured to protect against various threats and vulnerabilities.
  4. Conduct system vulnerability scans and analyze the results to identify potential security weaknesses. You will also be responsible of coordinating remediation efforts to address any identified vulnerabilities.
  5. You should be adept at analyzing potential attack activities and coordinating appropriate response actions. This involves understanding attack vectors, malware analysis, and incident forensics.
  6. Ensure that the organization adheres to cybersecurity frameworks, regulations, and compliance standards such as NIST, ISO 27001, and FERPA. This may involve interpreting and implementing these standards within the organization.
  7. You should have strong communication skills to effectively communicate security topics, policies, and standards to both technical and non-technical audiences within the organization. This includes educating staff on cybersecurity best practices and risk-related concepts.
  8. You will proactively seek opportunities to improve the organization's security posture by staying updated on the latest security threats, technologies, and best practices.

Qualifications and requirements

- Advanced experience with SIEM administration, including watch list creation, alerting tuning, threat feeds, use case development, and case/incident management.

- Proven experience working with leading EDR solutions, CAS, IDS/IPS, network- and host-based firewalls, data leakage protection (DLP), DAM (Database activity monitoring)

- In-depth, hands-on experience with at least two of the following technologies: Unix administration, Windows Server administration, Active Directory, Windows Workstation, Routers /Switches management, Firewall Management, SANS/NAS, Web servers, IAM/AAA, IDS/HDS, System vulnerability scanning tools, Application/Database vulnerability scanning tools.

- Ability to analyze possible attack activities such as network probing/ scanning, DDOS, malicious code activity, and possible abnormal activities, such as worms, Trojans, viruses, etc., and coordinating remediation actions as necessary.

- Understanding and working knowledge of MITRE ATT&CK Framework and security forensics.

- Experience with security industry standards and best practices. Proven experience with the interpretation and implementation of those standards in a corporate environment.

- Strong knowledge of cybersecurity frameworks, regulations, and compliance standards (e.g., NIST, ISO 27001, FERPA)

- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate strategic information security topics, policies, and standards, as well as risk-related concepts, to technical and non-technical audiences at various hierarchical levels.

- Understanding of network devices such as routers and switches. TCP/IP knowledge

- Understanding of common network services (web, mail, FTP, etc.), network vulnerabilities, and network attack patterns.

- Ability to work effectively under pressure and in a fast-paced environment.

Qualifications:

- 7+ years of proven experience in a SOC Analyst role

- 10+ years working in the Cybersecurity Domain, securing enterprise-level networks

- Industry certifications such as CYSA+, CEH, OWASP or GIAC certifications (preferred)

- Bachelor's degree in Cybersecurity or related field (Master’s preferred)

- Advanced proficiency in security tools, including SIEM (Splunk or Devo), EDR (Carbon Black or CrowdStrike), IDS/IPS, and threat intelligence platforms.

- Excellent analytical, problem-solving, and communication skills

¿What can we offer you?

- Belong to an international and multicultural company that supports diversity.

- Be part of international projects with a presence in North America, Pakistan, India and Latam.

- Work environment with extensive experience in remote and distributed work, using agile methodologies.

- Culture of constant learning and development in current technologies.

- Pleasant and collaborative environment, with a focus on teamwork.

- Access to learning platforms, Google Cloud certifications, Databricks, Tech Talks, etc.

- Being part of various initiatives and continuous participation in internal and external activities of innovation, hackathon, technology, agility, talks, webinars, well-being and culture with the possibility not only to participate but also to be an exhibitor.

- If you live in Chile or Colombia you will also have access to several benefits related to our centers :)!

Política de trabajo remoto

Remoto sólo localmente

El trabajo es 100% remoto, pero los candidatos deben residir en Sudamérica para postular.

Postula
Requiere postular en Inglés
Compartir este empleo Compartir