Senior Security Engineer

Roles & Responsibility

Key Responsibilities

Requirements

Requirements:

·We’re looking for a Senior Security Engineering and Tooling Specialist to join us in our Schiphol-Rijk office.
 

The Security Engineering and Tooling team is part of the Infosys Quartz – Security organization. The Senior Security Engineering and Tooling Specialist is the right hand of the Manager Security Engineering and Tooling and the team is responsible to assure the Global Security tooling estate is running smoothly, security events are orchestrated correctly and the Security operational teams have the relevant data to detect and protect the Liberty Global estate.

As Senior Security Engineering and Tooling Specialist you are responsible to make sure the Security Operation teams have the relevant security information in a timely manner to be able detect, protect and react against Cyber threat’s targeting Infosys Quartz estate. This is done by ensuring the Global security tooling estate is running smoothly, data sources are correctly on boarded, orchestration of events and automation are working correctly, and security tooling estate are properly working. This includes integration and automation of security tools and data sources to optimize visibility and capabilities of the Security Operational teams from Enterprise, datacenter’s, core networks and cloud environments.

Although technology is key, processes and people are as of important in this role as well as close cooperation with the stakeholder, be it technical teams as well as the business units and countries supported by Global Security. The role includes the ability to translate security findings or deficiencies to security risks and advise the organization on blocking issues and acceptable risk.
 

What will you be doing?

·       Responsible for engineering and proper functioning of the Global Security tooling estate.

·       Security Orchestration and Automation for the Infosys Quartz Security Operations team and Global security tooling landscape to empower Security operational teams to improve their response process.

·       Responsible for on boarding of data sources into the SIEM, ensuring the Threat and vulnerability tooling landscape work correctly and security monitor the right assets and other security tools used in Infosys Quartzl run smoothly and empower the Security Operational teams to have relevant data to understand what is going on in cyber security landscape and are able to make the right priority calls.

·       Continuously improve Integration and automation of the Global Security tooling estate

·       Close collaboration with the Infosys Quartz Security operations and other Operational teams, Architecture and Engineering teams and other Business units to align activities, drive improvements and has the right priorities set for maximum effect.

·       Review and improve security requirements set in policies / standards and guidelines and make sure that these are following industry best practice.

We tend to look for people with:

Essential:

·       Experience as a Security engineer

·       Experience working with Security Operations, Security engineering and security analysts teams

·       Advanced experience with Security Orchestration, Automation, and Response (SOAR)

·       Solid understanding of DevSecOps, Networking, Security and Monitoring

·       Awareness of security threats and defensive strategies within the critical infrastructure, including techniques, tactics, and procedures (TTPs) that threat actors utilize to attack an organization.

·       Experience with several of the following:

o    SIEM / Splunk (strongly preferred), Kibana / ELK

o    Lacework

o    Wiz

o    Prisma

o    Rapid7, c3m, whitehat (strongly preferred)

o    Imperva, Database security monitoring

o    Anomoli

o    DevOps

o    Azure, GCP, AWS, OSI  cloud services

o    MySQL / PostgreSQL

o    PowerShell

·       Strong understanding and hands-on experience in maintaining or security monitoring a number of the below:

o    Microsoft 365, Windows Desktop and Server, Active Directory

o    RedHat Enterprise Linux or derivatives

o    Debian Linux or derivatives

·       Strong understanding and ability to setup various platforms in an advance matter with:

o    Network essentials such as

§  IPv4, IPv6 networking

§  Host and Network firewalls

o    Standard host monitoring via SNMP and tools like Nagios, Cacti, Zabbix etc

·       Experience in working with a wide range of stakeholders in the context of improving security and incident respond.

·       Experience with monitoring and analytics solutions (e.g. Arbor threat mitigation suite, Splunk, Grafana, Elastic Stack etc.).

Desirable:
 

·       Bachelor or Master’s Degree in computer sciences or related fields (or equivalent years of experience).

·       Working in an international ISP environment

* Infosys is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people*

·       External Job Posting Description

External Job Posting Description

We’re looking for a Senior Security Engineering and Tooling Specialist to join us in our Schiphol-Rijk office.
 

The Security Engineering and Tooling team is part of the Infosys Quarts – Security organization. The Senior Security Engineering and Tooling Specialist is the right hand of the Manager Security Engineering and Tooling and the team is responsible to assure the Global Security tooling estate is running smoothly, security events are orchestrated correctly and the Security operational teams have the relevant data to detect and protect the Infosys Quartz estate.

As Senior Security Engineering and Tooling Specialist you are responsible to make sure the Security Operation teams have the relevant security information in a timely manner to be able detect, protect and react against Cyber threat’s targeting Infosys Quartz  estate. This is done by ensuring the Global security tooling estate is running smoothly, data sources are correctly on boarded, orchestration of events and automation are working correctly, and security tooling estate are properly working. This includes integration and automation of security tools and data sources to optimize visibility and capabilities of the Security Operational teams from Enterprise, datacenter’s, core networks and cloud environments.

Although technology is key, processes and people are as of important in this role as well as close cooperation with the stakeholder, be it technical teams as well as the business units and countries supported by Infosys  Security. The role includes the ability to translate security findings or deficiencies to security risks and advise the organization on blocking issues and acceptable risk.