Cyber Security Engineer at Meggitt Defense Systems, Inc (Meggitt Baltimore, Inc.) in Irvine, California

Job Description:

Tracking Code


20131648




Job Description

JOB SUMMARY

The engineer will investigate, monitor, create, and tune alerts reported by security controls and stay current with emerging threats and mitigation techniques. The engineer will architect ways of improving the overall security posture by conducting assessments to identify areas for improvement, and vetting out new technology. The engineer will provide expertise to other IT teams and may lead security projects. Daily job functions will include administration of firewalls, endpoint protection suite, IPS, SIEM, vulnerability management, updating design documentation, GPO modification to remediate security vulnerabilities, provide forensic analysis of network packet captures and logs from various systems, forensic analysis of computers, and use well-known security tools such as NMAP, Nexpose, TCPDump, Wireshark, Netcat, and Backtrack

ESSENTIAL DUTIES & RESPONSIBILITIES

Duties to include:
"Review of SIEM logs and investigate on suspicious activity and alerts.
"Work on security investigations and incident response
"Own security related systems such as IDS, SIEM, Endpoint Protection, Firewalls
"Primary owner of cyber security related systems such as SIEM, Firewalls, Endpoint Protection, Server and endpoint patching, 2FA and Endpoint Encryption
"Add and tune SIEM correlation rules to reduce false positives and produce better actionable alerts.
"Tune IDS/IPS alerts
"Administration of antivirus suite. Investigate client issues, abnormal blocks, test features, tune policies
"Administration of firewalls. Troubleshoot access issues. Audit rules.
"Review IPS intrusion events, modify ACLs and blacklists, review dashboards, investigate anomalies
"Utilize the vulnerability scanner to develop a plan of action for patching.
"Review latest threats from subscription services and test against security controls.
"Review vendor and security alerts and maintain relevant patches and fixes on vulnerable systems.
"Conduct internal security assessments, identify vulnerabilities, and implement a plan to remediate.
"Review Malware mail folder for spoofs, malicious links and attachments
"Review, create, and update security documentation and incident response plan.
"Deliver presentations and briefings to IT team members and management.
"Engineer, implement and monitor security measures for the protection of computer systems, networks and information
"Work with the Infrastructure and Network Team for architecture, implementation, management and administration needs
"Create technical design/implementation documentation.

"Perform current state system analysis, requirements gathering and documentation for Security Systems.
"Assist in configuration and implementation deployments.
"Participate in test planning and execution.
"Must be able to address and prioritize multiple tasks at the same time.
"Develop security policies and procedures to meet regulatory, customer and corporate contractual data protection requirements.
"Interact with vendors and contractors to secure network products and services.
"Assist in the administration and maintenance of the organization's data communication network equipment, servers, and storage systems.
"Assist in the administration of group policies, end user accounts, permissions, and access rights.
"Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs
"Work with ISPs and application vendors/partners to diagnose, and resolve technical issues.
"Work with minimum supervision to install new security systems and software.
"Respond to network and system outages during off business hours.
"Work off-business hours and/or weekends to perform upgrades and maintenance.
"Perform network troubleshooting to isolate and diagnose WAN/LAN network problems in a TCP/IP environment.
"Evaluate, stage and test new security applications and products.
"Contribute to design and make recommendations to enhance system and network infrastructure to support business growth.
"Take ownership of assigned projects to ensure timely completion.
"Work on other projects as assigned and acts as liaison to other departments and vendors on behalf of the department.
"Assist with help desk resolutions.
"Provide end-user training as required.
"Create vLans/ACLs to support network segmentation
"Manage VPNs
"Containerize legacy insecure protocols e.g. SMB,SNMPv1
"Implement web proxies
"Mentor junior colleagues
"Assist team to complete projects/tasks to meet demand as required.

Must be eligible to obtain DoD Security Clearance and be a US Citizen.

EDUCATION:

"Bachelor's degree (B.A./B.S./B.Sc.) in Computer Science, Information Systems or related discipline from four-year college or university or equivalent; and at least 5 years related experience and/or training. Additional years of qualifying work experience may be considered in lieu of formal education.

"Requires one or more of the following security Certificates or must be attained with 2 years: CISSP, CISA, CISM, GIAC or related security Certifications.
"Requires 5+ years of IT Security, Cybersecurity or IT risk management experience.
"Requires working knowledge of IP networks, firewalls and Active Directory, Mobile Device Management, Citrix, Web Application, IDS, MS SQL, and Oracle
"Virtual computing environment experience a plus.
"Requires experience with daily security activities such as SIEM log review, system administration, incident response, disaster recovery, security assessments and vulnerability management.
"Ability to prioritize and multitask and learn new technologies.

COMPUTER SKILLS:

Citrix XenApp/Xendesktop, MS Office, Oracle, Deltek Costpoint, LANs, SANs, Windows 2012 and later, Visual Basic, Linux, Crystal Reports, Cognos, Cisco IOS, firewalls (Cisco, Palo Alto, Fortinet).

If you are qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access our career center as a result of your disability. To request an accommodation, contact a Human Resources Representative at 1-949-465-7700 or denice.brown@meggitt.com
This position requires use of information which is subject to the International Traffic in Arms Regulations (ITAR). All applicants must be U.S. persons within the meaning of ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.
Meggitt is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.

Job Location


Irvine, California, United States



Position Type


Full-Time/Regular


Apply Now