Security engineer - client security

Acronis is a global cloud service provider, managing multiple datacenters with petabytes of data. Security Operations Team is a global team working on real-time monitoring and protection of all Acronis assets. You would be part of Security Operations Team identifying threats (through log analysis), responding to cyber incidents (attacks attempts, internal policy violations, etc.) and working with other teams on constant improvement of cyber security capabilities of Acronis.

Your primary goal would be to ensure the security of the users workstation - both Windows and Mac OS based. To achieve it you will work closely with IT team to develop, test and apply hardening configuration on Windows client systems and work with Jamf Pro Server to harden Mac OS clients. You may also be involved in user support, no more than at 20% of your capacity, primarily for troubleshooting security-related issues or effects caused by applying configuration hardening.

Your Responsibilities

• Understand current security threats for client systems and analyze best practices to protect from them. Practicing purple teaming approach, develop and use offensive tools to estimate the criticality of vulnerabilities.
• Based on this analysis, develop hardening approaches and create testing and implementation plan. Prioritize implementation based on the criticality estimations.
• Work with other team members as well as cross-team to enforce hardening configuration. Communicate to users, assist with implementation and troubleshooting.
• Monitor the rollout, analyze edge cases and work with Security Operations team to develop violations monitoring and alerting, jointly develop incident response playbooks.
• Conduct user training for security topics, like password policy, phishing protection and reporting security incidents. Work with other teams to incorporate the trainings into the on-boarding programs for new employees and contractors.
• Act as a subject matter expert for all security topic towards users.

Requirements

• Minimum 3 years in service desk support or similar role.
• At least 2 years experience with Jam Server administration and common tasks such as policy deployment, package creation and deployment, certificate management.
• Working knowledge of Active Directory, good understanding of AD security, authentication technologies like LDAP, Kerberos and NTLM. Understanding DNS functionality.
• Working knowledge of network technologies, access control, authentication and authorization protocols like RADIUS, 802.1X, EAP. Understanding VPN technologies.
• Excellent troubleshooting skills in a heterogeneous environment. Hands-on experience troubleshooting client issues, network access problems.
• At least basic understanding of cryptography and X.509 PKI. Working knowledge of certificate enrollment and deployment in Windows and Mac OS environments.
• Familiarity with PowerShell and/or any Unix shells and ability to write simple scripts is a strong advantage.

#LI-WC1