Detection & Response Engineer Job at SRI International
SRI International Menlo Park, CA 94025
$106,820 - $124,175 a year
Overview:
The candidate will work as a Subject Matter Expert (SME) between functions (Researchers, Contracts, Information Technology Services, Internal Audit, Finance, Corporate Accounting, etc.) to manage the operational aspects of the Information Security and IT Risk Management team. This is a hybrid position, the successful candidate will be required to be within driving distance of one of SRI's offices located in Menlo Park, CA or Princeton, NJ.
This position will focus as a functional lead role with the possibility to grow into a people manager overtime. Responsibilities:
The salary range is: $106820.00-$124175.00. Salary ranges will vary and are based on several factors, including geographic location, market competitiveness and equity amongst internal employees in similar roles. Positions may also qualify for SRI's Pay for Outstanding Performance program or the annual Performance Based Compensation program. SRI also has a competitive benefits package, to view details please go to https://www.sri.com/resources/benefits/. SRI International, an over 75-year strong pioneering research institute, has a rich history supporting government and industry. Our innovations have created new industries, billions of dollars in market value and lasting benefits to society. SRI is organized around broad disciplines and capabilities, with research and development divisions and labs to groups who excel at identifying new opportunities, developing products and creating custom solutions. Our organization is driven by impact - delivering unique solutions for the world's important challenges and transforming ideas into reality for clients and partners.
SRI is seeking a
Detection & Response Engineer who will be part of our Information Security and Technology Risk Management (ISTRM) department. The role will focus primarily on SRI’s Detection and Response and Security Operations.
The candidate will work as a Subject Matter Expert (SME) between functions (Researchers, Contracts, Information Technology Services, Internal Audit, Finance, Corporate Accounting, etc.) to manage the operational aspects of the Information Security and IT Risk Management team. This is a hybrid position, the successful candidate will be required to be within driving distance of one of SRI's offices located in Menlo Park, CA or Princeton, NJ.
This position will focus as a functional lead role with the possibility to grow into a people manager overtime.
- Lead Security Investigations and security operations response efforts identified through security tools and active attacks, user security related questions/reports, incident response, and improvements of detection signals.
- Oversee Threat Hunting Operations to search for key indicators of emerging threats
- Work with security engineering and ITS Operations to enhance automated tools to detect, monitor, and remove malicious content.
- Provide written summaries of remediation activities and other relevant information.
- Provide guidance and subject matter expertise regarding cybersecurity risks and technical recommendations including compensating controls.
- Work closely with Information Technology Services (ITS) groups to triage and remediate detected security incidents and alerts.
- Provide technical inputs for Risk Management Framework (RMF) Plans of Action and Milestones (POA&Ms) regarding remediation timelines or vulnerability mitigation details.
- Report security findings and issues associated with the RMF process to the appropriate Cybersecurity Contact
- Maintain security playbooks including Incident Response procedures, operation standards, procedures, Security
- Dashboards, Security Incident and Event Management (SIEM) to align with internal business functions and external exposures.
- The candidate will act as a backup security engineer and be responsible for assigned projects and duties delegated by the Chief Information Security Officer.
- Manage additional security operations staff including 3rd Party security operations vendor.
- Collaborate with peers and supporting divisions to maintain control descriptions. e.g. System Security Plan, Configuration
- Management Plan, Risk Management Plan, Vulnerability Management Plan, Patch Management Plan, Incident Response
- Plan, ISTRM Policies and Standards, and Disaster Recovery Plan.
- Bachelors degree in a relevant field or significant related experience with 2-5 years of experience
- Candidate must be a US citizen with the ability to obtain/maintain a security clearance
- Experience leading security monitoring and incident response duties in a SOC environment.
- Ability to quickly triage multiple security incidents and assign the right priority based on risk and confidence levels
- Good understanding of the common network security concepts including TCP/IP protocol stack, HTTP/HTTPS, TLS, WAF, VPN
- Technical knowledge and experience in security.
- Analytical and problem-solving skills related to cyber security and computer forensics.
- Ability to manage a security operations center or equivalent outsourced security operation.
- Excellent skills in Microsoft Excel
- DoD 8570.01-M IAM-3 Certification required (e.g. CISSP, GSLC, or CISM).
The salary range is: $106820.00-$124175.00. Salary ranges will vary and are based on several factors, including geographic location, market competitiveness and equity amongst internal employees in similar roles. Positions may also qualify for SRI's Pay for Outstanding Performance program or the annual Performance Based Compensation program. SRI also has a competitive benefits package, to view details please go to https://www.sri.com/resources/benefits/. SRI International, an over 75-year strong pioneering research institute, has a rich history supporting government and industry. Our innovations have created new industries, billions of dollars in market value and lasting benefits to society. SRI is organized around broad disciplines and capabilities, with research and development divisions and labs to groups who excel at identifying new opportunities, developing products and creating custom solutions. Our organization is driven by impact - delivering unique solutions for the world's important challenges and transforming ideas into reality for clients and partners.
Please Note :
blog.nvalabs.org is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, blog.nvalabs.org provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.