Security Operations Engineer Job Description
Security Operations Engineer Duties & Responsibilities
To write an effective security operations engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included security operations engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Operations Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Operations Engineer
List any licenses or certifications required by the position: CISSP, CCNA, SANS, GSEC, ISC, ISC2, CEH, EC, GCED, GPEN
Education for Security Operations Engineer
Typically a job would require a certain level of education.
Employers hiring for the security operations engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Engineering, Information Security, Computer Engineering, Information Technology, Technical, Electrical Engineering, Education, Information Systems, Technology
Skills for Security Operations Engineer
Desired skills for security operations engineer include:
Desired experience for security operations engineer includes:
Security Operations Engineer Examples
Security Operations Engineer Job Description
- You will manage and support production and test networks to high levels of security and ensuring The Logic Group’s PCI DSS KPi’s are met at all times
- You will manage and support production and test systems to high levels of security and ensuring The Logic Group’s PCI DSS KPi’s are met at all times
- Analyse operational data from ecommerce platforms to detect and respond to security events
- Monitors advancements and trends in information security technologies, threat and vulnerability awareness
- Identify and respond to security threats including virus/worm outbreaks, system compromise, and intrusion attempts and/or denial of service attacks by conducting continuous monitoring, vulnerability assessments and log analysis
- Coordinate with network, data center, desktop, and application support teams as required to validate alerts, ensure incident resolution, and perform root cause analysis
- Assist in the definition of end to end security architecture for production systems, including security design analysis, risk management, data security governance, penetration testing
- Work alongside engineers across Information Security to drive security controls and risk remediation
- Perform as technical support engineer for the enterprise Active Directory infrastructure including authentication, authorization, DNS, and Group Policy
- Perform as technical support engineer for troubleshooting Active Directory related issues
- Extensive knowledge in CM, Scripting, Patch Management, OpenStack, Docker, RHEL, and CI/CD
- Experience with Chef running at global scale
- Understanding of problems faced by Internet-scale production operations
- Ability to create system security defensive strategies for a fast paced, engineering driven environment
- Bachelor’s degree in CS/EE or related area (Master’s preferred)
- 1 year experience project management
Security Operations Engineer Job Description
- Mentors and coaches other Security Engineers to provide guidance and expertise in their growth
- They will function as a technical security subject matter expert and ensure that the confidentiality, Integrity and availability of information systems are maintained to protect customer, corporate and 3rd party data
- Take responsibility for risk assessment of our systems and solutions
- Take responsibility for maintaining secure infrastructure
- Auditing and organising the security testing of systems and infrastructure
- Manage vulnerability registry and ensure proper resolution
- Respond to attack notification or tickets with proper investigation and escalation
- Build relationships with enterprise technology experts and business leaders
- Provide technical expertise and support to Operations management, and staff in the implementation of security/protection technologies in relation to network, systems, and applications
- Act as a security expert resource (SME) to Operations management and staff in all phases of the development and implementation of projects
- Working knowledge of industry security standards such as ISO27001/ISO27002, NIST
- 1 year experience developing automation
- 1 year experience in development, support, or operations
- 1 year experience systems administration
- 1 year experience utilizing agile methodologies - fail fast
- Cloud Delivery or Data Center operations - at least 2 years experience
Security Operations Engineer Job Description
- May lead projects and provide guidance
- Provide technical assistance in the validation and evaluation of security alerts or incidents
- Engineer, implement, administer, and monitor security measures for the protection of computer systems, networks and information
- Work across team boundaries to share information and to collaborate when solving complex problems
- Monitor and analyze potential infrastructure security events to determine if it qualifies as a legitimate security incident / breach
- Monitor and review network, system, and security events to identify potential security incidents in IT infrastructure
- Triage events, attempt to remediate, and initiate escalation procedures to appropriately inform and advise management on incidents and incident prevention
- Document, communicate, and conform to processes related to security monitoring
- Be able to analyze malicious files through use of static and dynamic analysis and provide expertise in cyber forensics for identifying malicious viruses, worms, Trojans, and backdoors
- Identify security exposures
- Experience with Splunk, Linux, Apache web server, Snort, Tomcat, nginx, mysql and postgresql is a major advantage
- Experience with cloud technologies and platforms
- Advanced technical knowledge in technology methodologies, design, and implementation
- Information Security Certification highly desirable
- Bachelor’s degree and 3+ years of relevant career experience
- Proficiency in at least one scripting languages
Security Operations Engineer Job Description
- Participates in research and evaluation of security solutions
- Develops security solutions using structured development methodology in accordance with corporate standards and industry standards
- Provides timely and sufficient response to security incidents and assessment services and documents findings
- Assists in defining processes to carry out all security operations and incident response functions
- Helps improves data for operational metrics and progress reports from a quantitative and qualitative standpoint
- Responds to security audits and assessments
- Identifies areas of existing policies and procedures that require change or require new processes
- Provides on-call support 24x7x365, as required/scheduled
- Interfaces with other areas to support existing production systems and implement new and enhanced systems in accordance with company strategic architecture
- Provides specialized expertise to support other information technology projects/activities
- 1+ year of professional experience with SIEM
- Experience triaging security alerts, front-line analysis, and escalation
- Intermediate Identity & Access Management concepts
- Strong authentication
- Intermediate information security concepts
- Software development lifecycle and technologies
Security Operations Engineer Job Description
- Build a strong network security model to include firewalls, IDS/IPS, signature analysis, web application firewall, API security, database monitoring
- Identifies and resolves operational problems through final resolution
- Monitor security systems and if a risk is identified, work with the responsible department to take necessary corrective action
- Document security incidents, drawing evidence from event logs, error messages, and user activity to identify future risks from which remedial action can be taken
- Analysing and Remediating CISCO advisories
- Identifying and implementing improvements to security within the infrastructure
- Planning network device firmware upgrades
- Provide subject matter expertise in at least 1 security focused area and deep skills in at least 1 other area for support of other team members
- Assist in proof of concept evaluations of new security devices and services
- Configure, implement, and provide operational management and support of all security devices and services
- DB queries
- Familiarity with regulatory compliance (HIPAA, PCI, SOX)
- Authentication methods
- Desktop and productivity suites
- Effectively coordinate activities with their group
- Implement or improve team processes