Information Security Engineer

Information Security Engineer (only on W2 - No sponsorship offered)

Location: On site 4 days/week in Walnut Creek, CA

Type: Contract

Length: 3 months to start, likely extensions or FTE Conversion

Responsibilities

• This is a hands-on, highly technical position within a fast-paced environment, reporting to the Senior Manager of Information Security at our technology center of excellence in Walnut Creek, CA. We are building the Information Security Program, and you will have great experience building a greenfield environment.
• The role requires four days in the office.
• Provide best-in-class enterprise subject-matter expertise across all Cybersecurity controls for on-premises Infrastructure and Azure Cloud.
• Responsible for maintaining operational excellence status on cybersecurity services related to administration, availability, diagrams, documentation, updates, and policy management.
• Investigate and analyze security alerts to determine scope, urgency, impact, and remediation.
• Manage cyber security incidents and conduct triage/forensic analyses and root cause analyses of cyber-attacks.
• Continually improve internal scanning, detection, and reporting of security risks and anomalous activity.
• Provide input for Key Performance Indicators (KPIs) and Metrics reporting.
• Identify opportunities to automate or streamline current processes.
• Participate in tabletop exercises.
• Role Requirements
• Bachelor s degree with advanced security certifications such as CISSP, Certified Cloud Security Professional (CCSP), SANS GIAC, Offensive Security, Azure Certified Security Associate (AZ-500), Microsoft Cybersecurity Architect (SC-100), Etc.
• Four to Six years of experience in Information/Cyber Security.

Bonus Skills (one or more)

• Expertise with Azure Cloud Security and the Azure Well-Architected Framework.
• Experience with Rapid7 Insight IDR and Microsoft Sentinel other SIEM platforms to manage, create, and improve threat detection rules within the SIEM platform.
• Expertise in Beyond Trust PAM, other PAM solutions, and CrowdStrike Identify Exposure.
• Expertise with CrowdStrike or other EDR solutions, and CIS Operating System Hardening
• Expertise with Palo Alto Networks Prisma or other cloud native tools.
• Expertise in Tenable One, Rapid7 or other Vulnerability Management Platforms.
• Expertise with On-premises Fortinet FortiGate or other NGFW technologies.
• Expertise with Incident Detection and Response.
• Expertise with Synk or other Application code scanning tools. Including SAST/DAST.
• Understanding of networking and network security and common enterprise communication technologies.
• Knowledge of MITRE ATT&CK, CIS and NIST CSF Frameworks.
• Experience with various cybersecurity techniques and principles, such as Security Operations Center and SIEM, forensics, threat hunting, penetration testing, and threat intelligence.
• Designing and orchestrating requirements for CI/CD pipelines in DEVSECOPS.
• Experience with threat modeling.
• Experience with Microsoft Purview and Data Privacy.
• Experience with drafting security policies, procedures, SOPs.
• Proficiency in secure coding/scripting and automation.
• Knowledge of compliance framework, e.g. SOC2, NIST, ISO 27001
• Excellent communication skills in writing and speaking.
• Self-starter, and someone who is not afraid of new challenges and is willing to learn and grow in the Infosec field.