Cyber Security Operations Engineer

Software Guidance & Assistance, Inc., (SGA), is searching for a Cyber Security Operations Engineer for a contract assignment with one of our premier Healthcare Services clients in Carrollton, TX.

Responsibilities :

• Will play a pivotal role in our organization's cybersecurity efforts.
• Responsible for executing complex cyber security operations and Incident Response initiatives to safeguard our systems and networks against advanced threats.
• Working closely with cross-functional teams, you will provide expert-level guidance to junior analysts and other teams within the organization.
• Operating enterprise security services such as continuous cyber security operations, incident response, cyber monitoring, threat hunting, or digital forensics.
• Using security tools and resources to correlate suspicious events, providing context around the event, determine root cause and provide regular updates and recommending modifications to existing systems and procedures.
• Performing analysis on collection of cyber threats using high-level proactive and reactive threat hunting methods.
• Ensuring that security controls are developed, managed, and maintained.
• Supporting Incident Response efforts.
• Conducting business impact analysis to ensure resources are adequately protected with proper security measures.
• Assessing threats regarding information assets and recommending the appropriate information security controls and measures.
• Actively supporting junior analysts with security event monitoring to uncover potential security violations (e.g., breaches, unauthorized activity).
• Participating in on-call rotation (including weekends) to ensure continuous operations.
• Participating in internal incident response exercises and drills.

Required Skills:

• A Degree in Cybersecurity, Risk Analysis, Computer Science, Information Systems or other related field, or equivalent work experience
• 2-4 years of combined IT and cybersecurity work experience
• Hands-on experience performing cyber security investigations with the following security tool categories: SIEM, EDR, Email Security Gateway, with primary focus on CrowdStrike Falcon XDR.
• Understanding of cyber security industry frameworks (e.g., MITRE ATT&CK, D3FEND, NIST, Cyber Kill Chain, etc.)
• Good written communication skills, with a focus on translating technically complex issues into simple, easy-to-understand concepts in English
• Experience in supporting major incident response activities.
• Experience in supporting detection and response for EDR tools

Preferred Skills:

• Fluency in other languages i.e., Turkish; Spanish; French; Lithuanian;
• Security certification (i.e., Comptia Security+, CompTIA CySA+, EC-Council CEH) or equivalent
• Expertise in one or more of the following functional areas: Digital Forensics, Threat Hunting
• Experience in Python, PowerShell, Bash, or any other scripting languages
• Prior experience in developing detection rules and SOAR playbooks

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .

SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.