28 applicants

Company

Original Job Post

myGwork - LGBTQ+ Business Community · 3 days ago

Security Engineer II - Cyber Security Operations Center

United States

Full-time

Remote

Mid Level

$96K/yr - $173K/yr

Wonder how qualified you are to the job?

Maximize your interview chances

Internet

Insider Connection @myGwork - LGBTQ+ Business Community

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Maintain discretion and confidentiality in all areas pertaining to Jabil's information assets, data, and proprietary information, whether internal to Jabil or customer-specific

Demonstrate a commitment to customer service; anticipate, meet, and exceed expectations by solving problems quickly and effectively, making customer issues a priority

Continuously look for improvement opportunities in each area of Jabil's information security program

Create reports for assigned areas of responsibility

Exchange knowledge and information with other Jabil facilities to ensure best practices are shared throughout the Jabil organization

Perform mentoring and education for security staff members

Understand and embrace the business and IT strategic direction

Train and educate Site Security Coordinators on their role and security requirements

Manage Security Programs in assigned area

Consult with various entities to recommend security solutions and designs

Assure that procedures and work instructions are efficient and not redundant

Lead external and internal third-party audit activities. Participate in customer and group audits as required

Identify required metrics, goals, formulas, reporting processes, etc

Lead or assist security team efforts for IT Security, compliance, or customer audit activities

Identify and implement new practices and processes that are “best in the field”

Lead efforts to create and implement security standards, policies, guidelines, and practices

Own assigned processes and ensure process requirements are being met and that the process continues to be improved

Lead Global or Regional merger, greenfield, and acquisition security activities and ensure all requirements are met, processes established, and training performed

Lead security activities when reducing or shutting down existing facilities to ensure all security requirements are fulfilled

Identify Potential Threats and vulnerabilities and lead the mitigation of identified threats

Identify Security patches and vulnerabilities to be evaluated for impact and risk to Jabil

Lead the deviation process for the assigned area and ensure the deviation process is understood and followed

Lead Incident Response Process as required. Lead efforts to investigate and remediate security incidents and prepare and complete required Security reports associated with the Incident Response Process

Ensure business requirements are met for contracts and licensing, forecast, service level agreement, and associated policies for assigned service

Understand the Security service's technology and its capabilities. Determine downtime requirements, upgrades, etc

Lead strategic Security service Ownership activities to help set direction and establish patterns of continuous improvements

Ensure that the Security service meets all intended regulatory and compliance requirements

Assist with Security Deviation Audits

Approve recommended or requested policy changes to tool configurations

Stay abreast of new tools and approaches in the security arena and meet with vendors or service providers as required

Determine which tools should be evaluated and lead tool or service evaluation

Lead activities that help determine Jabil's security architecture and ensure that selected solutions meet all required business and compliance requirements

Consult with architects and other groups to ensure that solutions entering Jabil meet security requirements and also ensure that security solutions satisfy architecture requirements

Lead investigation and forensic efforts in sensitive and complex investigations and circumstances

Make judgments on whether security events are incidents and initiate Incident Response process when necessary

Perform advanced security incident investigation and event correlation analysis in sensitive and complex investigations and circumstances

Handle Escalation from Security Analysts and Security Engineers

Analyze security violation reports for suspicious and dangerous activity

Prepare summary reports for distribution to management

Submit tickets to the Service Desk describing security incidents with supporting information or evidence

Determine requirements for environment analysis such as: port scanning, vulnerability assessment tools, which tools are prohibited, etc

Ensure proactive steps are taken for any potential Security Tool problems such as: performance degradation, reliability/availability, and security issues

Approve security device tuning and filtering requests and ensure no negative impact to Jabil's enterprise

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Security TechnologiesForensic InvestigationIncident ResponseDatabasesGlobal ExperiencePythonPowerShellSOC IR PlatformsSplunk SPLSOARUBA PlatformsActive 24x7 SOC EnvironmentProblem-SolvingInterpersonalLeadershipCommunicationPresentationAdaptabilityCISSPGCIAGSECGCIHGCEDGCFAGREMIntrusion analysisIncident handlingMalware analysisSecurity engineeringEnterprise-level incident response team

Required

Bachelor's degree in Computer Science or Management of Information Systems; or 8 years or more equivalent external work experience; or equivalent formal training in related duties.

Significant experience and understanding in two or more of the following areas: Security technologies and tools, Forensic investigation and incident response tools and processes, IT technologies and tools (Networking, Systems, Applications, Databases, etc.), Security services or program management.

Global experience and working with different cultures are required.

One or more of the following, or similar certifications: CEH, CCNA, MCSE, CISSP, GIAC, CISM, or security tool certification.

Significant interpersonal and leadership skills to influence and build credibility as a peer

Possess a demonstrated sense of urgency with the ability to perform well under significant enterprise-wide pressure

Excellent communication and presentation skills with demonstrated skill in presenting analytical data effectively to varied (including executive) audiences

Previous experience in Python, PowerShell and other common languages used in SOC IR Platforms.

Previous experience with Splunk SPL, SOAR, and UBA platforms.

Must be willing to work in an active 24x7 SOC environment

Preferred

Master's degree in discipline directly related to information security, cyber, or computer network defense or digital forensics.

Relevant security related certifications a plus: CISSP, GCIA, GSEC, GCIH, GCED, GCFA, GREM

Proven subject matter expertise in relevant areas, such as incident response, intrusion analysis, incident handling, malware analysis or security engineering

Demonstrated experience in an enterprise-level incident response team or security operations center. Direct experience handling advanced cyber security incidents and associated incident response toolset

Advanced technical knowledge associated with various operating systems, network services and applications. A keen understanding of logging components and capabilities