Security Analyst II

About the Team

The mission of the Global Security Office Threat Prevention Operations Team is to provide comprehensive edge security control service aimed at allowing zero negative cyber security impacts.  We aim high!  Our team encompasses over twenty highly motivated professionals around the globe.  The team is comprised of subject matter experts in area of network perimeter security controls, including intrusion prevention systems, web gateways, web application firewalls, and F5 load balancers.  Our goal is to provide effective, secure, optimized security solutions for our customers.

Description

The Threat Prevention Security Engineer is responsible for collaborating with internal customers and other Global Security Office (GSO) teams to ensure operational requests and incidents are resolved within defined Service Level Agreements. Engineers are expected to leverage tooling to monitor and optimize performance of Threat Prevention Support Operation's support functions. In addition, Engineers may be involved in routine upgrades, tuning, application support, as well as root cause and post-mortem analyses around security incidents and service interruptions.

Engineer - Functions

·       Ensure that Threat Prevention Operation's security controls are available and in a healthy state

·       Coordinate with Operations Manager and Senior Engineers to manage the update plan for all Edge Security Operations controls (e.g., N-IPS, WAF, F5, Proxy, Full Packet Capture)

·       Monitor and execute tasks associated with proper application on-boarding for WAF coverage. - application onboarding, certificate installations, application status in ServiceNow

·       Provide advice on capabilities and configuration adjustments of McAfee Web Gateway (Proxy) cooperating with Information Security Consultants to mitigate risks while ensuring the business units have sufficient web access level required for their functions.Conduct approved changes to security controls in accordance with Experian Change Management Polices

·       Ensure that run documentation associated with each of the Threat Prevention Operation's control technologies is up to date and accessible within the EGSO WiKi

·       Actively engage in assigned personal development activities.

Engineer - Responsibilities

·       Coordinate with local and remote resources to install new hardware systems

·       Work with Server and Network engineering teams on initial configurations and deployments

·       Troubleshoot hardware/software and network issues, including VPN

·       Provide support in War Rooms with multidisciplinary technical teams to resolve outages

·       Escalate to the Senior Engineer recurring issues or when a ticket SLO is close to breachOpen support tickets with system/application vendors

·       Perform appropriate change ticketing and documentation

·       Serve as a Security Infrastructure expert and representative on global technology projects

·       Participate in the evaluation of new systems and technologies

·       Manage system health and capacity utilizing monitoring tools

Engineer – Requirements

·       Bachelor’s degree in a Computer Science, related technical field OR equivalent experience

·       3 years hands-on systems administration or network security experience

·       Strong written and spoken multi-lingual skills in English is preferred

·       Experience of deploying and managing McAfee Secure Web Gateways, Web Application Firewall (WAF) Gateways, or Intrusion Prevention Systems (IPS) or LAN/WAN network devices is highly desired

·       Experience of using SIEM and network monitoring tools to aid analytics or problem research

·       Extremely detail oriented with strong analytical and problem solving skills

·       Proven customer service and task execution skills in a fast paced environment

·       Ability to multitask and work well within a global team

·       Must be able to work independently with minimal management