Sr. Information Security Engineer (on-site)

Company Description

Job Mobz is part of a family of incredible brands alongside Flawless Recruit and Recruiter.com. Together, we provide talent acquisition services to fit the unique hiring challenges of our clients. Whether they need help building recruiting processes, attracting top talent, or payrolling contractors, we can help. 

Job Description

• Leverage the public cloud to deliver an elastic infrastructure for increased business agility, scalability, and resiliency.
• Work on-site in Walnut Creek, CA
• Use of the latest data analytics platform for informed decision-making, driving business outcomes, and uncovering new opportunities with data-driven insights.
• AI and automation to improve efficiency and speed up business processes and results.
• Digital apps to reinvent the workplace to boost employee productivity, agility, and digital dexterity through an engaging and intuitive work environment (employee experience).
• Participate in building a world-class Information Security Team.

Qualifications

Role Responsibilities

• This is a hands-on, highly technical position within a fast-paced environment, reporting to the Director of Information Security at our technology center of excellence in Walnut Creek, CA.  We are building the Information Security Program, and you will have a great experience building a greenfield environment.
• The role requires three to four days in the office.
• Provide best-in-class enterprise subject-matter expertise across all Cybersecurity controls for on-premises Infrastructure and Azure Cloud.
• Responsible for maintaining operational excellence status on cybersecurity services related to administration, availability, diagrams, documentation, updates, and policy management.
• Investigate and analyze security alerts to determine scope, urgency, impact, and remediation.
• Manage cyber security incidents and conduct triage/forensic analyses and root cause analyses of cyber-attacks.

• Continually improve internal scanning, detection, and reporting of security risks and anomalous activity.

• Provide input for Key Performance Indicators (KPIs) and Metrics reporting.
• Identify opportunities to automate or streamline current processes.
• Participate in tabletop exercises.

Role Requirements

• Bachelor’s degree with advanced security certifications such as CISSP, Certified Cloud Security Professional (CCSP), SANS GIAC, Offensive Security, Azure Certified Security Associate (AZ-500), Microsoft Cybersecurity Architect (SC-100), Etc.
•  Be able to work on-site in Walnut Creek, CA
• Six years of experience in Information/Cyber Security. 

Bonus Skills (one or more)

• Expertise with Azure Cloud Security and the Azure Well-Architected Framework.
• Experience with Rapid7 Insight IDR and Microsoft Sentinel to manage, create, and improve threat detection rules within the SIEM platform.
• Expertise in Beyond Trust PAM and/or CrowdStrike Identify Exposure.
• Expertise with CrowdStrike End-Point Security and CIS Operating System Hardening
• Expertise with Palo Alto Networks Prisma.
• Expertise in Tenable One Vulnerability Management.
• Expertise with On-premises Fortinet Fortigate Infrastructure Security.
• Expertise with Incident Detection and Response.
• Expertise with Synk and CI/CP pipelines in DEVSECOPS
• In-depth understanding of networking and network security and common enterprise communication technologies. 
• In-depth knowledge of MITRE ATT&CK, CIS and NIST CSF Frameworks.
• In-depth experience with various cybersecurity techniques and principles, such as Security Operations Center and SIEM, forensics, threat hunting, penetration testing, and threat intelligence.
• Designing and orchestrating requirements for CI/CD pipelines in DEVSECOPS.
• Experience with threat modeling.
• Experience with Microsoft Purview and Data Privacy.
• Proficiency in secure coding/scripting and automation.

Additional Information

All your information will be kept confidential according to EEO guidelines.