Kaleris · 3 days ago

Principal Security Engineer

Atlanta Metro

Full-time

Onsite

Senior Level

5+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

Asset ManagementSoftware

Insider Connection @Kaleris

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Technical Leadership (75/25): Serve as the primary technical authority while providing thought leadership in the cybersecurity space.

Incident Response Expertise: Act as the technical subject matter expert in response to security events. Take control of true positive security incidents and conduct tactical response to mitigate risks.

Security Playbook Development: Develop standard response playbooks tailored to our unique security toolset for consistent and effective incident handling.

Security Tool Management: Provide day-to-day management and optimization of security tools to ensure their effectiveness and efficiency.

Vulnerability Management: Manage the day-to-day operations of the vulnerability management program, ensuring timely identification and remediation of vulnerabilities.

Integration and Managed Services: Own the integration of security tooling and managed services, ensuring seamless operation and maximum value from these resources.

Vulnerability and Emergency Response: Monitor industry sources for emerging vulnerabilities and lead the emergency response process for critical threats.

Security Tool Evaluation: Identify and evaluate new security tools and technologies that could address gaps in Kaleris's environment.

Mentorship: Mentor and support the professional development of security analysts, sharing knowledge and promoting best practices within the team.

Security Assessments and Audit Participation: Participate in security assessments and contribute to internal and external audits, ensuring compliance and identifying areas for improvement.

Automation and Scripting: Utilize scripting and automation skills to enhance security processes and tool effectiveness, reducing manual workloads and improving response times.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Incident ResponseVulnerability ManagementEndpoint DetectionResponse (EDR)Digital ForensicsMicrosoft Security SuiteAutomationScripting Languages PythonScripting Languages PowerShellScripting Languages BashGIAC Certified Incident Handler (GCIH)GIAC Certified Intrusion Analyst (GCIA)GIAC Certified Forensic Examiner (GCFE)GIAC Certified Forensic Analyst (GCFA)

Required

Professional Certifications: Strong preference for technical certifications, particularly from GIAC such as the GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Forensic Examiner (GCFE), or GIAC Certified Forensic Analyst (GCFA).

Experience: A minimum of 5 years of experience in security operations, with a focus on incident response and vulnerability management.

Education: Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field.

Technical Skills: Demonstrated expertise in incident response and the handling of security incidents.

Technical Skills: Proficiency in endpoint detection and response (EDR) tools and strategies.

Technical Skills: Experience with digital forensics for in-depth cybersecurity investigations.

Technical Skills: Familiarity with the Microsoft Security suite and its application within security architectures.

Automation and Scripting Skills: Proficiency in scripting languages such as Python, PowerShell, or Bash, and experience with automation frameworks and tools.