This job listing has expired and the position may no longer be open for hire.

Enterprise Threat Intelligence & Incident Management Architect at Mirion Technologies in Meriden, Connecticut

Posted in Other 30+ days ago.





Job Description:

Description

Overview:


Technology advancements are helping organizations to deliver un-parallel user experience and value creation. The convergence of physical and digital world is leading to connected ecosystem that creates exponential number of interactions and data/information exchange. While cloud, data analytics and IIoT technologies bring huge opportunity, it also pushes relevance of cyber security to whole new level and demands the integration and orchestration of people, processes, and technologies to meet trusted digital transformation.


Mirion is a leader in radiation safety, measurement, and science. Built on 60 years of experience, Mirion solutions play critical role in nuclear energy, medial and defense sector. Being part of Critical National Infrastructure ecosystem, Mirion is committed to bring best of cyber security to operate as "Trusted Enterprise" and delivery Solutions that are "Secure-by-Design".


Mirion is looking for motivated, experienced, and expert cyber defenders. As part of corporate cyber security team and reporting to Chief Information Security Officer (CISO), the Threat Intelligence and Incident Management Architect shall perform responsibilities and have qualification, experience and expertise as described below:



Position Responsibilities:



  • Design, implement and operate enterprise-wide asset and configuration management system and operating procedures.

  • Architect and manage the enterprise-wide threat intelligence system (SIEM/SOAR) with capability to proactively detect and respond to potential threats.

    • Integrate, analyze, and correlate events from diverse internal and external sources e.g., network, endpoints, application, vulnerability assessment, DevSecOps system and CVE/CWE/Errata feed to identify security threats and incidents.

    • Proactive identification of anomalies via pattern analysis, heuristics, cognitive analysis.



  • Architect, implement, and operate incident management system and process in accordance with security policies and standards defined at enterprise level.

  • Define right-fit strategy for automated DevSecOps - CI/CD pipeline covering but not limiting to SCA/SAST/DAST/IAST, Code-Sign and product incident response.

  • Lead Endpoint Detection & Response initiative covering IT, OT/IIoT and Connected Products.

  • Implement and manage web security solution for company's public digital assets and communication systems e.g., websites, DNS, collaboration systems and email.

  • Automate and report the security risk reporting.

  • Lead risk mitigation program. Collaborate with other cyber security, IT, ER&D, and business functions stakeholders to identify, implement the technical and process remediation to maintain cyber risk at the minimum acceptable level.

  • Work with partner organization to manage security operations. Operate in-scope cyber security controls at highest assurance level.

  • Maintain and report on committed SLA level for Security-as-a-Service KPIs.



Qualification Required



  • 10+ years of direct architectural experience designing and deploying the security technologies focused on SIEM/SOAR/Threat Intelligence.

  • 5+ years of experience in IT and OT/IIoT asset and configuration management.

  • Industry recognized certifications are a plus - e.g., GSEC, GCIH or similar.

  • In-depth knowledge of NIST SP 800-53, NIST SP 800-150, NIST SP 800-61, NIST SP 800-160.

  • Extensive experience with information security tools and technologies such as SIEM/SOAR, endpoint detection & response, intrusion detection/prevention systems (IDS/IPS), web and email content filtering, data loss prevention (DLP), log correlation and management, vulnerability scanning and remediation, firewall monitoring and optimization, DNS security and DDoS mitigation.

  • Hands-on experience with

    • designing and implement DevSecOps and security assurance program covering code analysis (static, interactive & dynamic), vulnerability assessment and penetration testing.

    • OWASP: Application Security Verification Standard, Embedded Application Security, Software Assurance Maturity Model.



  • Excellent understanding of information security concepts, protocols, industry best practices and strategies.

  • Bachelor's degree in Engineering or related field.



Other Skills Requirement:



  • Strong understanding of security products and vendors, relevant technologies and trends, and industry standards.

  • Demonstrated experience in gathering and transforming business requirements into a comprehensive technology solution definition.

  • Strong team player - work with internal and external stakeholder to solve problems and actively incorporate input from various sources.

  • Excellent communication skills and collaborative working style. Strong critical thinking and analytical skills and ability to think "out of the box" required.

  • Willing to travel

Qualifications


BehaviorsInnovative - Consistently introduces new ideas and demonstrates original thinking
Team Player - Works well as a member of a group
EducationBachelors of Engineering (required)
ExperienceInformation security tools and technologies such as SIEM/SOAR, endpoint detection & response, intrusion detection/prevention systems (IDS/IPS), web and email content filtering, data loss prevention (DLP), log correlation and management, vulnerability scanning and remediation, firewall monitoring and optimization, DNS security and DDoS mitigation (required)
In-depth knowledge of NIST SP 800-53, NIST SP 800-150, NIST SP 800-61, NIST SP 800-160 (required)
Industry recognized certifications are a plus - e.g., GSEC, GCIH or similar (preferred)
5 years: IT and OT/IIoT asset and configuration management (required)
10 years: direct architectural experience designing and deploying the security technologies focused on SIEM/SOAR/Threat Intelligence (required)

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
More jobs in Meriden, Connecticut

Other
1 day ago

Community Health Center
Other
1 day ago

clairesinc
Other
2 days ago

ESPN
More jobs in Other

Other
4 minutes ago

Austal Usa, LLC
Other
4 minutes ago

Austal Usa, LLC
Other
5 minutes ago

Quinn Consulting Service, Inc.