XeneX

View Original

Certified Security Engineer (XCSE) - SOC

Work Location: Chattanooga, TN & Remote

Travel scope: Up to 10% in region.

About the Role:

The Certified Security Engineer builds on the skills and requirements of a Analyst position by adding the skills and responsibilities required for the installation, configuration, event escalation, and other advanced skills associated with the XeneXSOC infrastructure and deployments. It also requires a more advanced knowledge of networking technologies than the previous position would as it serves as escalation for that level.

This is an advanced position within XeneX, as it requires and extensive knowledge of the basic monitoring and operational practices as well as an advanced understanding of all the underlying technologies out applications are based upon. In addition the position requires an advanced understanding of network security and engineering concepts.

This position would report to the Senior Certified Engineer for his group of engineers or Security Operations Manager for the data center and will be responsible for resolving event escalations as well and installation, configuration, and troubleshooting all deployed systems.

Skillset.

  • Monitoring tasks

  • Assist Tier 1 in resolving anything they cannot

  • Advanced event analysis and behavioral concerns

  • Determining importance of event categories

  • Policy determination and creation.

  • Report customization and troubleshooting

  • Create integrated tools settings and job activities

  • Create and manage web GUI user accounts

  • Asset discovery and groups creation

  • Packet captures and advanced protocol analysis

  • Create and manage multi-tenancy components

  • Manage correlation directives

  • System installation

  • System configuration change management

  • Collection components creation and management

  • Database related tasks

  • System

  • Backup management

  • Determine excessive resource concerns

  • Command line configuration

  • Service management

  • SCP access for file maintenance

  • Disk Maintenance tasks, clear old or outdated logs or files

  • Verify log rotations

  • Verify cron job processing

  • Conf file access and modification

  • Plugin creation and management

  • Cron job creation and troubleshooting

  • Log rotation setup and troubleshooting.

  • Service troubleshooting.

  • Resolution of all issues or pass to developers for bug fixes.

Roles and Responsibilities

  • Tier 2 or higher support

  • Pre-Sales technical support

  • Advanced product demonstration

  • Backup to Tier 1 or admin/analysts

  • Full system access.

  • Incident response

  • Customer facing for incident information

  • XeneXSOC installation and setup

  • XeneXSOC configuration changes

  • Training documentation and delivery

Qualifications.

  • Experience with SIEM and Log management technologies

  • Experience in cross platform systems engineering.

  • Microsoft Windows

  • Cisco

  • Linux

  • Experience with VMware virtualization platforms.

  • Network design and topology

  • Knowledge of firewalls and intermediate systems

  • ACLs

  • Strong communication skills

  • Ability to author technical documentation

  • Engineer advanced level professional certification

  • Project management experience

  • Understanding of change control methodology.

  • Advanced understanding of network security

  • Understanding of hacking techniques and prevention.

  • Understanding of Forensic Analysis

  • Analytical Research capability

  • Buck stops here" mentality

  • Ability to identify the root causes of issues versus its symptoms

  • Packet capture and protocols

Education and/or Experience.

  • Bachelors degree or appropriate level of professional certification in systems engineering.

  • 5+years of relevant systems administration experience.