• Troubleshooting security problems
• Assist in the management and deployment of security products on endpoints and virtual desktops
• Design, operate and maintain a vulnerability management program
• Respond to and remediate system and/or network security breaches
• Plan, implement, manage, monitor and upgrade security measures for the protection of the organization’s data, systems, and networks
• Ensure that the organization's data and infrastructure are protected by enabling the appropriate security controls
• Test and identify network and system vulnerabilities
• Plan, create and implement cybersecurity processes and policies
• Run threat modeling sessions for all teams across the organization
• Identify information and logs to monitor, then design and engineer the process for gathering that information

Skills: Security Troubleshooting, Endpoint Security, Vulnerability Management, Incident Response, Security Implementation, Data Protection, Threat Modeling, Log Monitoring

• Enhance data security and protection platforms according to business need through designing, developing, implementing, and maintaining large-scale systems, across multiple hardware and software platforms in a large-scale hybrid environment
• Define and implement best practices for DLP tools including CASBs and email security tools such as Proofpoint
• Translate business requirements, specifications, and generalized needs into product offerings including rules, monitors, alerts, and playbooks
• Provide security control enhancement recommendations based on regulatory and best practice procedures
• Operate and solve issues in modern virtualized, on-prem, cloud, and hybrid environments
• Plan and implement security features/components of Azure DLP and Office 365 such as Azure Information Protection
• Work in collaborative team environment utilizing Agile development methodologies and principles, mentoring teammates, and learning cross functional skills to support a range of technologies as a product offering
• Monitor information security alerts triage and escalate security incidents and non-compliances in a timely manner
• Participate in the investigation of security violations and breaches
• Proactive monitoring on the latest security threats and vulnerabilities

Skills: Data Security, DLP Best Practices, Business Requirements Translation, Security Enhancements, Virtualized Environments, Azure DLP Implementation, Agile Collaboration, Incident Monitoring

• Ability to manage CI/CD tools within a team of developers.
• Develop and communicate principles, policies, standards, guidelines and best practices for CI/CD operations.
• Provide technical guidance and implementation support to multiple developer teams in multiple environments working to establish, maintain, and improve CI/CD pipelines.
• Train and support developers in the use of source control, build automation, continuous integration, test automation, and deployment automation.
• Develop and maintain CI/CD pipelines supporting the development, integration, test, operations, and sustainment activities of the EGS project.
• Employ the latest technologies to support CI/CD in virtualized and/or cloud environments.
• Ability to troubleshoot and make recommendations on infrastructure automation tools like Terraform and Ansible.
• Ability to design and document processes and CI/CD best practices for use across the Enterprise.

Skills: CI/CD Management, Policy Development, Technical Guidance, Developer Training, Pipeline Maintenance, Cloud Technologies, Infrastructure Automation, Process Design

• Design, demonstrate, develop, and maintain embedded systems for commercial aviation solutions and interiors products.
• Specify requirements, hardware/software design and implementation, test case development, verification test execution, and certification.
• Develop, coordinate, and conduct complex tests and debug systems that contain logical and mathematical solutions.
• Perform hands-on, day-to-day administration of the security infrastructure.
• Handle day-to-day tasks associated with cybersecurity operations.
• Provide support for production tools and collaborate with other groups as required.
• Troubleshoot and resolve cybersecurity related support tickets that have been escalated.
• Evaluate new tools and techniques to enhance the security posture.
• Maintain awareness of cybersecurity threats, events, tactics, techniques, and procedures (TTPs).
• Determine impact on existing solutions when new standards are implemented.
• Advise on product roadmap security features and practical implementation.
• Track emerging technologies and identify opportunities for improving overall Cybersecurity.

Skills: Embedded Systems Design, Requirements Specification, Test Development, Security Administration, Cybersecurity Operations, Troubleshooting Support, Security Enhancement, Technology Evaluation

• Build out and scale asset inventory platform.
• Implement and support security-focused tools and services.
• Design, build and deploy automation to scale infrastructure vulnerability discovery efforts across the enterprise.
• Drive vulnerability remediation across all environments (dev, prod, cloud, endpoint, and mobile assets) by providing actionable security guidance.
• Analyze vulnerabilities and exploit code.
• Translate technical analysis into actionable intelligence to assist with prioritization of remediation and mitigation efforts.
• Develop and document procedures related to the review and remediation of vulnerabilities.
• Provide technical support for the resolution of vulnerabilities.
• Provide tier 1 security operations support.
• Participate in security compliance efforts (e.g., PCI, SSAE16, ISO, etc.).
• Work directly with patch management team.
• Participate in on-call duties related to vulnerability management.

Skills: Asset Inventory, Security Tool Implementation, Automation Development, Vulnerability Remediation, Vulnerability Analysis, Actionable Intelligence, Procedure Documentation, Security Operations Support

• First responder for the true positive offense handed over by the security monitoring team.
• Using a host of forensics tools to find the root cause of a problem, limit the damage and see that it never happens again.
• Incident analysis concerning log events generated from a variety of platforms including the
• SIEM, Anti-APT, IDS/IPS, Firewalls, WAF, AntiVirus, HIPS, system & application logs.
• Point of contact for all the incidents related to Cybersecurity.
• Reviews threat intelligence reports and feeds, makes recommendations to higher management
• In-depth analysis of suspected files by using sandboxing technique.
• Bringing fresh ideas to the on-going development of the incident response function
• Analysing and correlating incident data to develop preliminary root cause and prepare Incident Reports
• Utilise incident response use-case workflows to follow established and repeatable processes
• Prepare runbook/playbook for incidents with maintenance, review, and periodic updates as per requirement
• Understanding of the tactics, techniques, and procedures of advanced attackers, to hunt for signs of APT activities.
• Perform threat intelligence and protection against threats including malware, phishing, hacking, etc. by consuming threat intelligence from a wide variety of sources

Skills: Incident Response, Forensics Analysis, Log Event Analysis, Cybersecurity Point of Contact, Threat Intelligence Review, Sandbox Analysis, Incident Data Correlation, Threat Hunting

• Identify security flaws and vulnerabilities in the ecosystem
• Perform malware analysis and reverse engineering for malware samples identified in spam, phishing emails and drive-by downloads observed in proxies
• Produce detailed incident reports and technical briefs for management, administrators and end-users
• Liaison with other cyber threat analysis entities
• Triage incident handling support for incident detection, analysis, coordination, and response
• Closely work with other teams like firewalls, intrusion protection, web proxy, antivirus, SIEM, vulnerability scanning, and other key threat countermeasures team to strengthen the security posture of the organization.
• Research and analyse data sources to provide insight into new trends for the Bank environment collaborating with other members of the SOC 
• Troubleshoot security incidents/problems within the permissible Bank policies and controls.
• Identification of network, and operating systems vulnerabilities and recommending countermeasures
• Analyse and recommend solution of information security incidents/problems based on knowledge of the major information security products and services
• Strong interpersonal and communication skills with the ability to lead and work as part of a team
• Reporting and presentation skills for reporting Incident summaries daily to Internal stakeholders and Weekly and monthly Basis for Management
• Available for on-call/site for Incidents on non-support hours on a need basis.

Skills: Security Flaw Identification, Malware Analysis, Incident Reporting, Cyber Threat Liaison, Incident Triage, Security Team Collaboration, Trend Analysis, Communication Skills

• Creating & improving secure software development processes
• Proactively Identify risks, improvements, risk assessment
• Implementing a sound security architecture for doctrines Platform together with the developers
• Taking an integral part in Doctrins CSIRT team
• Reviewing daily/weekly system reports and taking action, e.g. for security alerts
• Creating & maintaining relevant documentation
• Choosing and evaluating new IT security tools and processes
• Defining best practices for the use of SOUP
• Secure users that have been determined as compromised.
• Using log analytics, cloud app security, Azure sentinel, and other security-related detection tools to hunt for possible holes within CARE's network defenses.
• Ensure all Network, Server, PC, and software systems are up to date on security vulnerability patches. 
• Coordinate with business owners and departments to ensure all products are functioning properly to minimize downtime.
• Protect digital files and information systems against unauthorized access, modification, or destruction.

Skills: Secure Software Development, Risk Identification, Security Architecture Implementation, CSIRT Participation, System Report Review, Documentation Maintenance, IT Security Tool Evaluation, Vulnerability Management

• Implement and Operate Network and application security tools.
• Study and evaluate cyber security solutions with the ability to fully manage security projects and solution proposals and project documentation
• Identity security weaknesses in addition to recommending and applying necessary enhancements to the clients
• Write technical reports, detailed presentations, and documentation
• Comply with federal and state laws, regulations and directives
• Maintains technical knowledge by attending educational workshops, reviewing publications
• Project Implementation of IT Security Solutions
• Planning, implementing, managing, monitoring, and upgrading IT security solutions
• Vendor coordination and management for product implementation and troubleshooting
• Maintenance works including patching of IT security solutions and appliances
• Integration testing of proposed security solutions
• Conduct Proof of Concept for Security solutions
• Evaluate and analyze security products
• Participate in Application Security Assessments and Reviews

Skills: Network Security Implementation, Cybersecurity Solution Evaluation, Security Weakness Identification, Technical Reporting, Regulatory Compliance, IT Security Project Management, Vendor Coordination, Application Security Assessment

• Support the development, update, implementation, and enforcement of information security governance including policies, baselines and procedures
• Support the cyber security risk management capabilities including risk methodologies to mitigate cyber security risk across the company.
• Serve as a liaison between business and functional areas and the technology teams to ensure that Information Security policy-related business requirements for protecting data are clearly defined, communicated, and well understood, and considered as part of operational prioritization and planning
• Recommend appropriate security controls according to internal standards and key industry best practices and ensure that such controls operate as intended
• Gap analysis concerning standards, industry regulations, and definition of the security posture
• Conducting risk assessments and analysis
• Developing corrective actions and remediation plans for identified issues, risks, or vulnerabilities
• Analysis of regulatory requirements for data protection and support in the identification of corrective actions to reach compliance
• Support in the development and implementation of information security and cyber-security awareness programs to raise awareness around information security risks and best practices
• Support the information & cyber security incident management and escalation processes and procedures
• Support in the digital transformation projects with security architecture reviews and the design of appropriate security controls
• Support the definition, development, and review of key metrics to measure and report the state of cyber security across the company (e.g., key performance indicators, key risk indicators)
• Monitor, identify, report, and mitigate security weaknesses, vulnerabilities and other threats that evaded existing security controls in KN information systems
• Research and evaluate the latest IT and security trends to find best way to secure KN information systems Automate processes and workflows whenever possible - and find ways to make it possible

Skills: Information Security Governance, Cybersecurity Risk Management, Business Liaison, Security Control Recommendations, Gap Analysis, Risk Assessment, Security Awareness Programs, Threat Mitigation

• Works closely with the external Managed Security Solution providers to aggregate security data.
• Engage in assessing and mitigating vulnerabilities and determining the root cause of security incidents
• Assist with establishing security standards and best practices for the enterprise
• Evaluate systems, network, and data to determine necessary security protocols and measures.
• Analyzes system outages, alerts, and reports of abnormal system behavior due to suspected security-related events
• Assists in the development, implementation, and evaluation of departmental security solutions, security-awareness training programs, and related materials
• Work with the global infrastructure team to analyze security threats and recommend technical infrastructure changes to reduce risk
• Prevent, detect, analyze, contain, and correct security incidents and events in KN information systems promptly
• Document and collect evidences for security incidents, prepare reports to identify the risk and the root cause
• Work with public cloud, Kubernetes, CICD pipelines
• Own a security engineering workstream that improves the overall security posture of the bank
• Actively write code to improve the security posture of the processes, for both internal and externally sourced systems.
• Actively reduce the risk landscape by building preventative and detective controls into engineering practices, for both internal and external software development

Skills: Security Data Aggregation, Vulnerability Mitigation, Security Standards Development, Security Protocol Evaluation, Incident Analysis, Security Awareness Training, Threat Analysis, Security Engineering

• Understanding of secure software development lifecycle
• Background in microcontroller hardware and embedded, real-time driver software development, including security related implementations
• Knowledge of standard cryptographic algorithms, protocols and best practices
• Knowledge of automotive communication (CAN, LIN, Ethernet)
• Detailed technical knowledge of security engineering, computer and network security, authentication, security protocols and applied cryptography
• Knowledge of use of network analyzer, threat modeling and penetration testing tools
• Ability to communicate complex technical concepts effectively.
• Flexible, adaptable, and able to manage multiple tasks in a dynamic, fast-paced environment.

Qualifications: BS in Network Engineering with 2 years of Experience

• Advanced proficiency with two of Checkpoint Firewall-1, Palo Alto firewall technologies, Symantec Blue Coat proxy
• Ability to manage Provider-1 and/or Panorama management and logging systems
• Strong understanding of networks, security technologies, and systems technologies
• Proven ability to troubleshoot problems systematically in complex systems and network environments
• Customer focused mindset, excellent communication, interpersonal, and collaboration skills
• Experience with on and off premise DDOS solutions
• Able to use protocol analyzers or packet capture software to diagnose and resolve IP connectivity problems
• Experience with monitoring, tuning, and alerting
• Strong LINUX skills, scripting, automation of tasks and manipulate data via API and Ansible.
• Experience with server platforms, virtualization, containers, and cloud technologies
• Operational knowledge of systems, databases and network security engineering best practices
• Familiar with ITIL concepts such as Incident, Change, and Problem Management
• Experience with policy orchestration, compliance and automation tools (e.g. Tufin, Skybox)

Qualifications: BS in Computer Science with 2 years of Experience

• Understanding of application protocols, development and attack vectors
• Good cybersecurity capabilities and network and computer engineering skills
• Ability to create dashboards, alerts and automatic reports
• Understanding of key security controls with demonstrated experience in information system security controls and countermeasures
• Ability to understand business processes and provide solutions that align with those processes
• Familiarity with more advanced security solutions such as SIEM, IDS/IPS, EDR, data encryption, and other endpoint, network or data security tools
• Advanced working knowledge of key IT technologies such as TCP/IP, operating systems, network topologies, Active Directory, scripting languages, and the OSI model
• Advanced ability to troubleshoot technical problems for the purpose of responding to support incidents
• Thorough understanding of change management and ability to work under the required guidelines and deliver on business/project requirements
• Advanced user of key back office applications such as Excel, PowerPoint, Outlook and Word (or similar)
• Possess excellent communication skills
• Possess good time management and organizational skills

Qualifications: BS in Cybersecurity with 3 years of Experience

• Experience in network security engineering and operations in an Enterprise environment.
• Experience in IT, or related area, with a focus on security tool technology, security management and policy enforcement.
• Hands on experience supporting security requirements of a large, global enterprise environment.
• Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
• Proven experience supporting security initiatives in a largescale, complex, global organization
• Knowledgeable in the use of troubleshooting and debugging tools
• Experience with testing of security tools
• Excellent problem solving and time management skills.
• Understanding of Security Information and Event Management (SIEM) with knowledge of log collection, parsing of log files and how this data can be effectively used to mitigate risk and respond to threats.
• Knowledgeable in scripting languages and the use of regex.

Qualifications: BS in Information Technology with 4 years of Experience

• Solid experience related to the implementation of cybersecurity solutions or cybersecurity standards and initiatives.
• Experience and knowledge of defense-in-depth, trust levels, privileges, and permissions.
• Practical experience with security software such as Security Information and Event Management (SIEM), antivirus, whitelisting technologies, patch management solutions, firewalls, routing/switching, packet analysis, among others.
• Experience with cybersecurity standards, frameworks and practices adopted by multiple industries (e.g. ISA99/IEC 62443, NERC, NIST, etc.).
• Excellent written and verbal communication skills, along with ability to clearly communicate technical information to a range of audiences.
• Highly motivated to work in the security area and interact with customers.
• CISSP / GICSP cybersecurity certifications, or similar accreditation from recognized entities such as SANS, ISACA, (ISC)2.
• Experience in design, implementation, or life cycle support of process automation and control systems.
• Experience with Industrial Control System challenges in multiple industries.

Qualifications: BS in Information Systems with 5 years of Experience

• Have CISSP and CCSP Certifications
• Progressive experience in building secure applications preferably payment platforms, systems that can withstand all threats from various threat agents.
• Deep understanding of current compliance, regulatory and legal requirements relevant to the transaction processing industry such as PCI, HIPPA, SOX, and GLBA
• Knowledge of administrative, physical, and technical controls that could be built around networks, systems, and applications to secure them.
• Expertise on common web and network vulnerability attacks including OWASP Top 10 and SANS Top 25 and respective mitigation strategies.
• Understanding of cryptographic concepts and applied cryptography (SSL, AES, etc.)
• Proven record of accomplishment in designing security controls for complex web applications with backend services expertise such as API Gateway, Identity and Access Management Services, Data Protection Technologies, Security Information Event Management, etc.
• Strong knowledge of deep design review and Secure Development Lifecycle methodologies, Agile-based methodologies, middleware platforms, development platforms
• Knowledge of functional programming languages like Golang, Scala, Erlang, Haskell, and Clojure, or the ability to learn them quickly
• Technical experience with security technologies including, but not limited to, intrusion detection/prevention, event Co-relation, firewall, antivirus, anti-spam, policy enforcement, patch/configuration management, usage monitoring, audit, secure application development, etc.
• Experience working in 24/7 operational environments
• Exceptional interpersonal, written, and oral communication skills
• Experience in implementing security controls by security policy/guidance.
• Familiarity with assessment and accreditation process

Qualifications: BS in Computer Science with 4 years of Experience 

• Admin-level or expert-level experience in three or more branches of security knowledge (host security, applications security, network security, development security, operations security, and/or physical security)
• Be an advanced technology generalist with experience across a wide variety of products.
• Strong aptitude for rebuilding & enhancing trust relationships with IT and business stakeholders at all levels of the corporation, as well as external client organizations
• Fast learner, able to find way around new systems, a quizzical mind, able to learn using interviews, observation, research, and self-study to quickly figure out how things work
• Cybersecurity-relevant work experience with a Bachelor's degree in Engineering, Information Systems, Computer Science, or related field.
• Cybersecurity-relevant work experience with a High School Diploma or equivalent.
• Cybersecurity-relevant certifications – GCFA, GMON, GREM, GNFA, GCIH, GCIA, GDAT, GCTI, OSCP.
• Have experience in using enterprise security tools such as SIEM, EDR, CASB, and WAF.
• Strong understanding of Common Internet and Application-Layer Protocols, Windows, Linux, and MacOS Operating Systems.
• Familiarity with common web application architecture and AWS, GCP, and Azure/O365 Cloud environments.
• Experience conducting disk and memory forensics and performing static and dynamic malware analysis.
• Ability to automate repetitive tasks, connect to APIs, and parse and analyze large data using scripting languages such as Python, Go, or Powershell and data analysis tools such as Pandas.
• Ability to collaborate with Sponsor to create documentation
• Demonstrated knowledge and understanding of security technologies and their application

Qualifications: BS in Computer Engineering with 5 years of Experience 

• Experience with IBM Guardium
• Ability to work in team in diverse/ multiple stakeholder environment
• Experience and desire to work in a Global delivery environment
• Good knowledge of Industrial Control Systems for Chemical processes, industrial IT / OT architecture, assets and organization
• involved in Industrial IT/OT aspects including communications & protocols, PLC/DCS architectures
• Willingness to acquire knowledge of network, host security technologies, and products and to continuously improve these skills
• Experience in security architecture, DCS (Emerson/Yokogawa/Honeywell), SCADA (Siemens, Allen-Bradley, Schneider), Process Control Network, TCP and IP protocol suite
• knowledge of Industrial cyber security standard (NIST, IEC62443…)
• Strong customer orientation, open-mindedness, good adult teaching
• Good oral communication skills
• Experience in embedded software, systems engineering, and/or automotive cybersecurity
• Experience in API development or API security
• Experience in Embedded hardware security (Hardware trust anchor / HSM)
• Experience in Software security feature implementation (secure firewall, gateway, network isolation & secure updates)
• Experience with problem-solving, analyzing causes, collecting data, and developing effective solutions.

Qualifications: BS in Software Engineering with 6 years of Experience 

• In-depth Knowledge and understanding of AD, Azure AD, AWS, PKI, SSO and IAM software platforms as well as their attack vectors, security principles, OS hardening, and management tools.
• Advanced experience designing, securing, and supporting Windows 2012R2/2016 Domain structures in a multi-forest, multi-site environment.
• In-depth Knowledge and understanding of AD-related technologies including DNS, DHCP, application integration with AD, Azure AD, LDAP, PKI, PowerShell, WSUS
• Experience in defensive cybersecurity techniques, blue team, and/or SOC.
• Experience with problem-solving, analyzing causes, collecting data, and developing effective solutions.
• Strong knowledge of ITIL processes.
• Have CISSP, CEH, and OSCP certifications.
• Understanding and application of the following security tools: Development / Configuration experience with any industry-leading SIEM platform.
• Knowledge in scripting languages including but not limited to Python, Pearl, JavaScript, etc
• Knowledge of current operating environments (Microsoft, Linux, & OS X)
• Knowledge of ISAM Web Seal, LDAP, IGI
• Knowledge of cloud-focused security
• Analyze network behaviors for malicious or undesirable behavior
• Optimise use cases and rules to fine-tune performance
• Develop new high-value use cases and rules with a low probability of false positive
• Fluent in English and/or experience working in international environments.

Qualifications: BS in Statistics with 7 years of Experience 

• Experience in Automotive networking (CAN, LIN & Ethernet), automotive connectivity (cellular, satellite, Bluetooth) protocols, security, over-the-air updates and vehicle architectures, variations across multiple OEMs
• Experience in Programming experience with one of the following tools: (C/C++/C#/Python/Java)
• Provide actionable intelligence to defend against emerging threats
• Ability to take on an Alert Handler or Incident Handers role
• Ability to self-manage and work unsupervised
• Solid grasp of networking technologies along with analytical and troubleshooting skills
• Knowledge of PEO IWS Instruction 5239.1 
• Knowledge of FISMA and FedRAMP regulations/requirements
• Some knowledge of DoD and DON cyber policies and procedures and/or NIST 800-53, DoDI 8500.01, and DoDI 8510.01
• Familiarity with PEO IWS organization and systems
• Excellent verbal skills since the cybersecurity engineer works directly with the program offices and leadership to communicate progress, status, recommendations, and related information
• Excellent teamwork skills since the cybersecurity engineer works in cooperation with program offices, different ISEAs, and other support organizations
• Excellent organizational skills since the cybersecurity engineer may work on several projects at once
• Broad technical background knowledge in the area of IT: Solid knowledge of networking protocols and security, application security, Operating System security, Cloud security.

Qualifications: BS in Information Technology with 4 years of Experience 

• Experience in using ITIL process management (Incident/Change/Request Management)
• Experience in project management/implementation skills, effective time management skills, ability to work independently, and experience with a distributed team
• Firm understanding of the Enterprise class application architectures that are highly scalable and reliable and the ability to secure them.
• Experience with multiple languages such as Java, C/C++, C Sharp, Python and understand how to detect and remedy related security issues such as OWASP top 10 and analyze them per the OWASP Testing Guide.
• Understanding of Open Source and 3rd Party Components and relevant security risks.
• Knowledge of Containerization Technologies such as Docker, and Kubernetes and their security.
• Familiarity with Agile Methodology and related technologies such as JIRA and Confluence.
• Ability to scale security within the SDLC by automation using toolsets such as source code analyzers, vulnerability scanners, configuration validation, and similar techniques.
• Experience with SAST/SCA/Container Security/DAST reviews and remediation.
• Ability to Perform Source code reviews on Java, C/C++, C Sharp and Python
• Excellent communication and interpersonal skills with the ability to convey security needs to developers, peers, and leadership.
• Solid foundation in Application Security.
• Technical IT and cybersecurity background
• Excellent written skills since the cybersecurity engineer develops and/or updates written security-related policies, procedures, and operations plans

Qualifications: BS in Cybersecurity with 3 years of Experience