Mercury Insurance · 2 days ago
Security Operations Center Engineer
Wonder how qualified you are to the job?
Insurance
Insider Connection @Mercury Insurance
Responsibilities
Monitor security tools & systems: Analyze logs, alerts, and data for suspicious activity.
Investigate potential threats: Determine if alerts are real incidents and identify vulnerabilities.
Supervise all Incident/Security issues, including preliminary triage, troubleshooting, and remediation.
Gather evidence: Collect and analyze evidence to understand incident scope and impact.
Contain the threat and remediate vulnerabilities: Quickly contain the incident to minimize damage, and implement patching, configuration changes, or other measures to address the exploited vulnerabilities.
Recover from the incident and report to management: Assist in restoring affected systems and data to their normal state, and keep management informed about security incidents and response efforts.
Documentation: Document findings for future reference and improvement, including process roadmaps, change management validations, and user/system impacted incident management and resolutions.
Administer SOC/NOC tools: Manage and administer all SOC/NOC Operations center owned tools, including scripting, customizations, report building, alert modifications, automations, and maintenance.
Minimize risk and exposure to system security and business interruptions of the company's infrastructure.
Participate in disaster recovery and BCP events: Actively participate in disaster recovery and Business Continuity Plan (BCP) events.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
BS degree in Computer Science, Information Technology, related field; and/or equivalent combination of education or work experience
2-4 years of 24x7x365 Security Operations experience and related technologies
Enterprise Security Operations support experience
Enterprise security document creation.
Understanding of IT infrastructure and networking: This includes knowledge of operating systems, network protocols, and basic infrastructure components.
Security principles and technologies: Familiarity with common security threats, vulnerabilities, and mitigation strategies like firewalls, intrusion detection/prevention systems (IDS/IPS), and SIEM tools.
Scripting and automation: Ability to write basic scripts to automate tasks and generate reports.
Incident response procedures: Understanding of established processes for handling security incidents, including containment, eradication, and recovery.
Security tools and software: Proficiency in using the specific security tools and software typically employed by a security organization.
Experience in using ExtraHop, Qradar, Splunk and/or any other security related tools for the visibility, monitoring, detection, alerting, response, and investigation of security related events.
Communication: Clear and concise communication with technical and non-technical audiences, including reporting incidents to management and collaborating with other IT teams (including public speaking, critical business writing skills, process documentation and knowledge base article composure)
Critical thinking and problem-solving: Ability to analyze complex security data, identify root causes of incidents, and develop effective solutions.
Attention to detail: Meticulous focus on identifying subtle anomalies and potential threats within vast amounts of data.
Decision-making under pressure: Making quick and informed decisions during critical security incidents.
Preferred
5 or more years of 24x7x365 Security Operations and related technologies
GIAC Security Essentials Certification
GIAC Security Leadership Certification
ISACA Certified Information Security Manager
Microsoft Certified Systems Engineer: Security
(ISC)2 SCCP
(ISC)2 CISSP
(ISC)2 ISSAP
CCSK4
ServiceNow
SIEM Solutions
TrustWave
Email Protection Solutions
Endpoint Detection & Response Solutions
Microsoft 365 Security Suite
Incident Management Communication tools
CV/CIRT Gov’t notification process
Load balancers & Web Application Firewall Solutions
Firewall/router/networking equipment
Web Content Filtering (WSS)
Secure Web Gateway Solutions
ITIL Foundations certifications (V3 or V4)
Benefits
Competitive compensation
Flexibility to work from anywhere in the United States for most positions
Paid time off (vacation time, sick time, paid Company holidays, and volunteer hours)
Incentive bonus programs (potential for holiday bonus, referral bonus, and performance-based bonus)
Medical, dental, vision, life, and pet insurance
401 (k) retirement savings plan with company match
Engaging work environment
Promotional opportunities
Education assistance
Professional and personal development opportunities
Company recognition program
Health and wellbeing resources, including free mental wellbeing therapy/coaching sessions, child and eldercare resources, and more
Company
Mercury Insurance
Mercury Insurance has offered quality insurance for personal auto insurance to homeowners insurance to mechanical breakdown protection.
H1B Sponsorship
Mercury Insurance has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (12)
2022 (15)
2021 (7)
2020 (15)
Funding
Current Stage
Public CompanyTotal Funding
unknown1985-11-29IPO· nyse:MCY
Recent News
2024-05-28
2024-05-21
Company data provided by crunchbase