CYBERSECURITY ENGINEER SKILLS, EXPERIENCE, AND JOB REQUIREMENTS

Updated: October 9, 2024 - The Cybersecurity Engineer collaborates closely with team members, leveraging strong interpersonal skills to train and mentor others. This role requires experience in network and security operations, alongside a deep understanding of firewalls, monitoring tools, and various cybersecurity technologies. Effective communication is essential throughout the incident management process to ensure timely and accurate information flow, supporting the overall security posture of the organization.

Essential Hard and Soft Skills for a Standout Cybersecurity Engineer Resume
  • Network Security
  • Firewalls
  • Vulnerability Testing
  • Incident Response
  • Cryptography
  • SIEM Tools
  • OS Security
  • Malware Analysis
  • Compliance Standards
  • Scripting
  • Problem-Solving
  • Critical Thinking
  • Communication
  • Teamwork
  • Attention to Detail
  • Adaptability
  • Time Management
  • Leadership
  • Analytical Skills
  • Emotional Intelligence

Summary of Cybersecurity Engineer Knowledge and Qualifications on Resume

1. BS in Systems Engineering with 2 years of Experience

  • Mid-level experience in IT systems and/or infrastructure.
  • Mid-level experience in designing, deploying, and/or supporting enterprise-scale security solutions
  • Experience working with or implementing endpoint and network security solutions in an enterprise.
  • Knowledge of Operating systems internals, hardening, and monitoring (Windows and UNIX).
  • Knowledge of TCP/IP network fundamentals.
  • Broad knowledge of scripting languages 
  • Knowledge of PCI/DSS and its technical controls.
  • Excellent communication skills and excellent team player.
  • Experience demonstrating strong leadership, self-motivation, and accountability.

2. BS in Computer Engineering with3 years of Experience

  • Experience in Systems Engineering in the wireless (e.g., 4G LTE, 5G) environment
  • Experience in Information Assurance with particular experience in Risk Management Framework (RMF)
  • Experience in Cyberspace Operations, preferably in Defensive Cyberspace Operations
  • CISSP, CISM, or other higher-level cybersecurity certification 
  • GO/FO/SES-level communications in both written and verbal forms
  • Fully versed in wireless (e.g., 4G LTE, 5G) and IoT technologies with hands-on experience in securing those elements within an enterprise environment
  • Familiar with Security controls assessment and risk evaluation
  • Familiar with Virtual infrastructure engineering and configuration
  • Familiar with system-style integration interfaces and testing strategies

3. BS in Software Engineering with 4 years of Experience

  • Experience with SDLC, secure software development lifecycle in a DevOps and Agile environment.
  • Experience with Veracode and/or Sonarcube
  • Strong people skills working with team members as a trainer and mentor.
  • Work experience or training as a Network/Security Operations Engineer, network/security support analyst or experience across multiple technologies such as firewalls including web application firewall, proxies, distributed denial of service systems, data labeling and loss systems
  • Understanding of network monitoring concepts and management tools. 
  • Knowledge of systems, application, and fault monitoring toolsets namely Indeni, Splunk, Moloch, QRadar, Solarwinds, NetCool, or other similar platforms
  • Functional understanding of packet and protocol from firewall/and other systems through tools such as Wireshark to support troubleshooting activities
  • General knowledge of networking and routing topology, cybersecurity frameworks, constructs and auditable standards
  • Communicate effectively throughout the incident management process to ensure that all communications are timely and accurate, as per documented process
  • Understanding, proficiency, or certification of Information Technology Infrastructure Library (ITIL) concepts, preferably with Knowledge of ServiceNow or other incident and change management tools
  • Familiarity with payment transaction message flows and the diverse types of exceptions that could be encountered resulting in client impacts such as message delivery outages, theft, or fraud.
  • Possess the background, experience, or skills to maintain both central and distributed firewall platforms such as Provider-1, Panorama management and logging infrastructures.

4. BS in Electrical Engineering with 3 years of Experience

  • Experience in IT systems and/or infrastructure, supporting enterprise-scale security solutions.
  • Meticulous planning and reporting skills.
  • Deep understanding of Operating system internal working like kernel processes, privilege levels for both Windows and Linux / Mac.
  • Good understanding of Cyber Security Operations and Incident Response processes.
  • A strong technical and business understanding of endpoint security tool methodologies.
  • Knowledge of TCP/IP network fundamentals.
  • Good understanding of AWS, implementing security controls and compliance requirements.
  • Good understanding of Intune and all security blades, including Defender.
  • Good understanding of Microsoft cloud security technologies.
  • Strong analytical and problem-solving skills.
  • Must have verbal and written soft skills to support software deployment and troubleshooting timelines across many different departments in an enterprise environment.

5. BS in Computer Science with 4 years of Experience

  • Understanding of the basic IT systems engineering lifecycle
  • Understanding of different lifecycles/methodologies (waterfall, incremental, agile, DevOps)
  • Understanding of fundamental security approaches, and typical solutions e.g. monitoring, firewalls, etc.
  • Experience working in customer delivery environments the subject matter for with network, email, and endpoint DLP.
  • Hands-on experience with DLP tools for policy creation.
  • Experience with CASB solutions from leading vendors ideally ex: Symantec, McAfee, and Microsoft
  • Expert knowledge of Win Server 2016/2019 and/or RHEL/Unix
  • Knowledge of PCI and other regulatory requirements for endpoint protection
  • Understanding of firewalls, intrusion detection systems, authentication mechanisms, and networking protocols including SMTP, HTTP(s), DNS, TCP/IP, and SNMP as they pertain to security solutions.
  • Skills in scripting and RegEx
  • Advanced knowledge of Security Information and Event Management (SIEM)
  • Deep understanding of network defense technologies such as IDS, IPS, and Firewalls
  • Deep understanding of the current and evolving threat landscape
  • Knowledge of the use of network analyzers, threat modeling and penetration testing tools

6. BS in Information Technology with 7 years of Experience

  • Excellent understanding of complex and interrelated ICT security issues, including monitoring, troubleshooting, and security incident/intrusion handling
  • Knowledge and use of a SIEM product(e.g. ArcSight, Splunk).
  • Solid knowledge of offensive security tactics, techniques, tools, and procedures.
  • Knowledge of risk management methodologies and concepts.
  • Excellent understanding of complex and interrelated security issues, including monitoring, troubleshooting and security incident/intrusion handling.
  • Knowledge of English, both written and spoken
  • Active TS/SCI with CI polygraph security clearance
  • Any cybersecurity certification such as Security+, CISSP, CISM, ISSMP, etc
  • Experience Risk Management Framework and cyber security operations
  • Experience in building and managing Cyber policies and procedure for a Cyber office.
  • Excellent problem-solving skills
  • Excellent verbal and written communication skills
  • Advanced knowledge of core internet and application protocols
  • Understanding of secure software development lifecycle

7. BS in Computer Science with 8 years of Experience

  • Experience in Application Whitelisting Software
  • Understand the threat landscape of network-connected ICS technology
  • Understanding the NIST Cybersecurity Framework and NIST SP 800-82/ISA62443 control sets
  • Microsoft Visio and documenting ICS/OT infrastructures
  • Zone and conduit architectures and cybersecurity approaches
  • Ability to understand the endpoint security tools at a subject matter expert level and leverage that knowledge for effective problem-solving and critical thinking skills.
  • Experience with AntiVirus Software
  • Ability to communicate ideas and explain technical knowledge in business language to management and other stakeholders
  • Experience in performing deployments and managing security tools such as Data Loss Prevention, Endpoint Security/Endpoint Detection and Response, Host Intrusion Prevention, Cloud Access Security Broker and Identity Management Solutions.
  • Familiarity with various host, network, and cloud-based security technologies to own the maintenance and lifecycle of technology.
  • Experience with NIST800 standards including 30, 53, 82, and 171
  • Experience with ISO27000 series standards
  • Ability to communicate with all levels of an organization up to the Executive Staff and external customers

8. BS in Computer Engineering with 6 years of Experience

  • Strong interest in developing a Cybersecurity/Infosec skillset
  • Deep knowledge of Active Directory and Azure AD
  • Deep knowledge of Azure and Microsoft 365 solutions, including both infrastructure and security components.
  • Deep knowledge of Windows-based server networks.
  • Basic understanding of Networks and Network Security (Cisco, Palo Alto, Azure Networks)
  • Dabbled with Linux/Unix (RHEL, Kali)
  • Basic understanding of email systems and mail security (Exchange Online, Mimecast)
  • Basic understanding of system management tools (SCCM, InTune, JAMF)
  • Ability to manage multiple projects simultaneously.
  • Excellent communication and interpersonal skills.
  • Ability to prioritize and organize assignments.
  • Strong verbal and written communication skills.
  • Ability to compartmentalize sensitive information
  • Background in microcontroller hardware and embedded, real-time driver software development, including security-related implementations

9. BS in Cybersecurity with 5 years of Experience

  • Work experience in information technology security operations, working with various system logs and security tools to detect and resolve security threats
  • Related work experience may be substituted for the education requirement on a year-for-year basis.
  • Working knowledge of network topologies, security tools such as SIEM, HIDS/HIPS, NIDS/NIPS, and security analysis tools.
  • CEH, CISSP, or SSCP certification.
  • Experience with Cloud Computing and technology.
  • Must have strong verbal and written communication skills
  • Ability to communicate effectively with internal and external business partners as well as technical, and non-technical staff.
  • Must have the ability to work in a team environment and manage multiple activities simultaneously.Strong critical thinking and problem-solving skills
  • Good attention to detail with a pragmatical mind and great problem-solving skills
  • Great awareness of cybersecurity trends and hacking techniques.
  • Knowledge of industry standards within this area, primarily IEC 62443, IEC 62351
  • Experience with Python/Bash/PowerShell or other scripting languages/tools
  • Technical documentation (English)
  • Good communication skills and stakeholder management experience
  • Fluent in English (writing and oral)
  • Strong attention to detail with an analytical mind and outstanding problem-solving skills

10. BS in Software Engineering with 4 years of Experience

  • Work experience with incident detection, incident response, and forensics.
  • Excellent understanding of network concepts including firewalls, routing, NACLs, segmentation, remote access, proxy, NIDS/NIPS, transport protocols
  • Excellent understanding of endpoint protection solutions not limited to Data Loss Prevention, Authentication, Monitoring, FIM
  • Excellent understanding of cloud security solutions and cloud-based architectures - [SIP]aaS.
  • Excellent understanding of SIEM and central logging technologies and solutions
  • Experience with data analytics platforms such as ElasticSearch / ELK Stack
  • Experience with cross-platform logging systems and log data forwarding solutions including, Syslog forwarding and facilities, Windows event log, WEC/WEF, logs appended services such as log4j and the best practices for managing structured and unstructured event data
  • Thorough understanding of securing and integrating SaaS products not limited to Office 365, ServiceNow, Slack
  • Must have hands-on programming experience using several of Python, C++, Java, Ruby, Node, Go, sh, and/or Power Shell
  • Expected to build and maintain automation solutions for system administration and data management tasks
  • Ability to work under pressure in a fast-paced environment
  • Great awareness of cybersecurity trends and hacking techniques
  • Creating innovative solutions to meet the company’s technical security needs
  • Develop company-wide best practices for IT security
  • Research security enhancements and make recommendations to management

11. BS in Computer Engineering with 5 years of Experience

  • GIAC, CISSP, or relevant IT security certifications.
  • Prior experience or familiarity with working in Cyber Defense Operation or SOC.
  • Understanding and working experience in Cyber Security Incident detection and response practices and/or processes. E.g. NIST Incident Handling Guidelines, Cyber Kill Chain, MITRE ATT&CK Framework, etc.
  • Experience with configuring and managing (Hands-on) cybersecurity solution such as Security Information & Event Management (SIEM), Endpoint Detection & Response, Threat Intelligence solutions, Privileged Access management, or other enterprise security solutions.
  • Experience in implementing security audits, controls, and mitigating measures on enterprise security solutions.
  • Background in microcontroller hardware and embedded, real-time driver software development, including security-related implementations
  • Knowledge of standard cryptographic algorithms, protocols, and best practices
  • Knowledge of automotive communication (CAN, LIN, Ethernet)
  • Detailed technical knowledge of security engineering, computer and network security, authentication, security protocols, and applied cryptography
  • Entry level candidates are welcome to apply 
  • A self-motivated individual with a proven background in critical infrastructure & IOT security
  • Experience with Go or any other strongly typed languages
  • Experience with AWS and cloud-native technologies
  • Interested in making a real impact on climate change with innovative technology

12. BS in Statistics with 5 years of Experience

  • Have CompTIA Advanced Security Practitioner (CASP)
  • Have Certified Information Security Manager (CISM)
  • Have a Certified Information Systems Security Professional (CISSP) (or Associate)
  • Have Global Information Assurance Certification (GIAC) Security Leadership Certification (GSLC).
  • Experience in systems engineering with a focus on cybersecurity, network security, or boundary protection.
  • Experience utilizing and applying Security Classification Guides (SCG) across various networks
  • Experience conducting System Engineering Technical Reviews
  • Understanding of Engineering Change Requests (ECR) and Configuration Management processes for various baselines.
  • Understanding of Top Secret and Below Interoperability (TSABI)/ Secret and Below Interoperability (SABI) Cross Domain Solutions (CDS) Processes and experience developing artifacts that support approval process for production systems.
  • Experience with ChangeGear, ServiceNow, Solar Winds
  • Understanding of Risk Management Framework and eMASS
  • Knowledge of standard cryptographic algorithms, protocols, and best practices
  • Knowledge of automotive communication (CAN, LIN, Ethernet)
  • Understanding of secure software development lifecycle
  • Ability to work in a fast-paced, evolving, growing, and multifaceted environment

13. BS in Computer Science with 6 years of Experience

  • In-depth understanding of security issues, exploitation techniques, and remediation measures
  • Should have a good understanding of application-level attacks with hands-on experience in discovering and exploiting issues with/without the assistance of automated tools
  • Develop knowledge of any current programming languages
  • Strong understanding of software and application security
  • Strong oral and written communication skills
  • In-depth knowledge of web & mobile application attacks and defense strategies (SQL injection, XSS cross-site scripting, CSRF, logic flaws, etc.) and Thick client applications, mobile applications, ERP applications (SAP, etc.)
  • Experience with analyzing Router, Switches, Firewall rule base focused on security
  • Experience in Internal & External Penetration Testing on Network Infrastructure (including
  • Servers, firewalls, Routers, switches, etc.) including conducting wireless security assessment
  • Certifications like CEH, OSCP, SANS GPEN, CISSP, or any other industry-accredited security certifications
  • Understanding of application security guidelines/requirements from OWASP etc.
  • Good interpersonal, problem-solving, reasoning, and analytical skills
  • Know about Risk Rating Standards like DREAD, CVSS, etc.
  • Have good understanding of web application architecture and Secure development life cycle (SDLC)

14. BS in Data Analytics with 5 years of Experience

  • Experience developing and implementing UEBA use cases
  • Experience designing architecture, deploying and managing UEBA or other Cyber Security solutions in a complex enterprise environment
  • Experience administering or securing Windows, UNIX, or Linux operating systems
  • Recent experience with scripting (e.g. Perl, python, PowerShell, regular expressions)
  • Experience developing HQL/SQL queries
  • Knowledge of security engineering, system security, network security and security technologies (e.g. firewalls, mail guards, antivirus, malware, authentication systems, SIEM, and IPS)
  • Experience reviewing raw log files, data correlation, and analysis (i.e. firewalls, network flow, IDS, system logs)
  • Background in threat modeling for insider threat and user behavior analytics use cases
  • Excellent written and dynamic verbal communication skills
  • Demonstrated understanding of control objectives, cyber threats, and vulnerabilities
  • Demonstrated ability to work under minimal supervision
  • Must be flexible and able to handle stressful situations in a professional manner
  • High degree of self-motivation, commitment, and integrity
  • Ability to work well with others and as a member of a team

15. BS in Information Security with 4 years of Experience

  • Experience with systems engineering V-model process, life-cycle management, & engineering change proposal processes
  • Experience planning, scheduling, and executing Assessment & Authorization (A&A) activities, including the development of System Security Plans (SSP) and other supporting documentation
  • Experience and knowledge in onboarding, tuning, and implementing enterprise security solutions (Tenable Security Center and Nessus, RSA NetWitness Security Analytics, and the DoD’s HBSS solution)
  • COTS and FOSS patch management/deployment experience
  • Experience with highly ‘matrixed’ organizations
  • Ability to establish tasks and objectives with Lead Engineers and ensure the entire team understands and can work towards the vision and objectives
  • Previous experience in Verification and Validation, and Assessment and Authorization
  • Experience in proactively analyzing and resolving problems relating to operational considerations, engineering drawings, and associated hardware about repair activities
  • Prior information security experience.
  • Familiarity with HIPAA, PCI DSS, State PII laws governing Franciscan, and industry-standard frameworks such as NIST, ISO 2700x, CIS Top 20 Controls, HICP.
  • In-depth understanding of information security controls and technological means of implementing/enforcing controls.
  • Understand how to create an audit plan for an asset, application, or process as well as executing an audit plan, with contextual awareness of the current security threat landscape and controls.
  • Understand the differences between policies, standards, and procedures and possesses good command of drafting content for each.
  • Maintain knowledge through reading security industry news, research, and by periodically attending information security conferences, professional association meetings or webinars.

16. BS in Mathematics with 3 years of Experience

  • Experience with and knowledge of hardware and software, networks, data centers, systems and other related arenas related to cyber security.
  • Attention to detail, QA skills, the ability to “think forward,” adept at problem-solving and addressing issues and complications before they expand.
  • Experience with managing firewalls and security software.
  • Knowledge of the latest trends and awareness of current hacking techniques and cybercrime.
  • Ability to thrive in high-pressure situations and deliver results that go above and beyond.
  • Strong experience in designing complex infrastructure solutions
  • Solid understanding of security protocols, cryptography, authentication and authorization
  • Hands-on experience on application security tools like Endpoint protection, DLP, Web Security, Email Security, and Data Classification
  • Good Knowledge and understanding of SEIM solution, PAM, IAM and VAPT
  • Good Knowledge and understanding of network designs, security standards and protocols.
  • Experience in network and application security filed
  • Professional Certificates such as CCNA Security, CCNP, CEH, and Security+
  • Background in security controls, auditing, network and system security.
  • Ability to express technical concepts in business terms.

17. BS in Software Engineering with 7 years of Experience

  • Ability to complete and oversee installation, configuration, maintenance, and troubleshooting of network firewall hardware, software, and connections.
  • Excellent hands-on technical knowledge of network switch, routers, firewalls, and management software.
  • Monitor and test network performance and provide network performance statistics and reports.
  • Write/edit and execute technical documents including, but not limited to: Standard Operating Procedures (SOP), Concept of Operations (CONOPS), and other documents
  • Demonstrate a working understanding of Defense Information Systems Agency (DISA) STIG requirements.
  • Ability to review customer requests and provide IA scope management for Technical Requirements.
  • Must possess DoD 8570 compliant certifications for IAM Level II.
  • Excellent communication and leadership skills and be service and career/growth-oriented.
  • Availability to support after-hour maintenance windows.
  • Understanding of Tipping Point with a strong knowledge of TCP/IP, HTTP/HTTPS, FTP, cookies, authentication, web filtering, virus scanning, web servers, SSL/encryption, and reporting packages.
  • Experience working with the NIST 800-53r Risk Management Framework.
  • Experience working with Security Gateway and BCAP technologies.
  • Experience with Enclave Test and Development (T & D) Security Technical Implementation Guide (STIG).
  • Knowledge of Symantec's Blue Coat proxy products to include deployment, design, and architecture with the ability to troubleshoot proxy issues.

18. BS in Cybersecurity with 6 years of Experience

  • Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues.
  • Understanding and experience with ISO 27001 & PCI DSS.
  • Experience or understanding of governance, risk, and compliance (GRC) processes and solutions.
  • Experience in information security and auditing.
  • Able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.
  • Evaluate the effectiveness of the internal security control framework and recommend adjustments as business needs change.
  • Can perform periodic security risk assessments and advise business stakeholders on best practices to reduce risk and overall breach profile.
  • Strong in the development of internal policy and procedure documents and plans.
  • In-depth understanding of established security standards and governmental requirements.
  • Research network products, services, protocols, and standards to remain abreast of developments in the networking industry.
  • Ability to pick up technologies quickly and document recommendations for customer and management approval.
  • Ability to independently build test network or system prototypes, performing equipment set-up, test, and participate in test report writing.
  • Ability to develop attack programs to verify security assurance and weakness capability.

19. BS in Statistics with 5 years of Experience

  • Experience as a subject matter expert for one or more of the following tools: ForeScout CounterAct, Cisco ISE, McAfee ePO (MVM and Application Control), IBM Big Fix, Carbon Black, Rapid 7, RedHat FUSE, Splunk, RSA Archer, Tenable Security Center, Vormetric, SailPoint, CyberArk, Venafi, CA-PAM, or equivalent security tools and products. 
  • Effective communication skills, both oral and written.
  • Understanding of Relational Database Management System (RDBMS) and query language, scripting, and APIs.
  • Experience with enterprise device types and operating systems (Windows and UNIX), Active Directory and Windows domain management including patch and configuration management, group policy objects, UNIX security including SUDO.
  • Experience and use of the key technologies relevant to API and application configuration or integration including SSL, DHCP, Active Directory, LDAP, JDBC, ODBC.
  • Understanding and use of Microsoft SQL database, database definition, procedures, and advanced SQL.
  • Understanding of PKI for asymmetric and symmetric encryption including elements and tools used in public/private key generation, key stores, CAs, hashing algorithms, deployment methods for enterprise software and endpoints, and related NIST standards.
  • Understanding of networking technologies including LAN/WAN, wireless, and VPN.
  • Understanding of security design, network security architecture, network topology, and understanding of TCP/IP protocols, OSI model
  • Understanding and use of network diagnostic commands and tools (ping, netstat, traceroute, ifconfig, nmap, tcpdump, Wireshark, VI, Notepad++, etc.).
  • Experience deploying and configuring software in federal enterprise IaaS or Cloud environments.
  • Experience supporting Incident response and handling, scanning for malicious content, automation, and aggregation of intelligence data.
  • Experience using Microsoft Office and other file types: PDF, XML, etc.
  • Experience using Virtualization Technologies, such as VMware, vSphere, and Xen.
  • Ability to perform ETL operations to retrieve enrichment content from existing hardware, software, and system boundary inventories.

20. BS in Computer Engineering with 6 years of Experience

  • Experience working in Cyber Security, knowledge of Common Criteria Language, and FIPS 140 standards.
  • Works on various network types of equipment and related devices from a security protection emphasis to include installing, troubleshooting, modifying, and testing.
  • Strong experience with AlienVault and LogRhythm
  • Administrator-level experience with back-end SIEM systems
  • Have CCNP, CISSP, SSCP, CEH certifications
  • Experience with firewalls, TCP/IP, antivirus, cryptography, device monitoring and log management and event monitoring
  • Knowledge of CPEs, CVEs, CCEs, and CWEs.
  • Knowledge of NIST RMF or CDM Framework.
  • Understanding of Domain-Forest trusts, DNS, and DHCP.
  • Knowledge of operating systems including Windows or Linux
  • Experience with phishing, malware and dynamic analysis
  • A good all-round knowledge of IT and a proficient understanding of Cyber Security risks, threats, best practices and prevention measures
  • Ability to work in team environments
  • Prior experience in Ethical hacking or any related course attendance
  • Knowledge of programming and scripting languages (Python, SQL, Bash, etc.)

21. BS in Information Technology with 7 years of Experience

  • Hands-on experience in detecting, responding to, containing, and remediating live security incidents
  • Demonstrable understanding of large enterprise computing environments, applications, and TCP/IP networks and protocols
  • ArcSight, Elastic, or Splunk toolset skills
  • Offensive Security certification or other industry certification in Information Security
  • Experience with automation tools (Ansible, Chef, Puppet, Salt, etc.)
  • Hands-on CASB design, architecture and deployment (Symantec CloudSOC, etc).
  • Hands-on research and deployment of Shadow IT/Unsanctioned Application products.
  • Good knowledge of authentication technologies (including NTLM, Kerberos, and SAML) 
  • Scripting experience like Python, Bash
  • Knowledge of Data Protection Practices (Data At Rest, In Use, In Motion, etc) and their practical implementations.
  • Practical knowledge of web malware, its propagation and mitigation strategies.
  • Experience in implementing security audits, controls, and mitigating measures on enterprise security solutions.
  • Experience with configuring and managing (Hands-on) cybersecurity solutions such as Security Information & Event Management (SIEM), Endpoint Detection & Response, Threat Intelligence solutions, Privileged Access management or other enterprise security solutions.
  • Understanding and working experience in Cyber Security Incident detection and response practices and/or processes.
  • Experience in enterprise hardware and/or software asset management tools and inventory methods.

22. BS in Information Security with 7 years of Experience

  • Strong grasp of authentication principles, such as MFA, OTP and challenge-response
  • Understanding of web application security, common web vulnerabilities, and WAF controls
  • Ability to assess the cyber risk of a proposed application or project
  • Ability to use common networking tools like Nmap, curl and Wireshark
  • Ability to use common security tools, like Metasploit, Jon the Ripper, and Mimi Katz
  • Understanding of common network security protocols such as TLS and Kerberos
  • Familiarity with Linux/UNIX and Windows-based systems
  • Knowledge of concepts involving public keys, certificates, and digital signatures
  • Ability to read and understand technical vulnerability disclosures, then explain them
  • Ability to think critically and objectively, and use data to solve problems
  • Ability to independently handle multiple tasks, prioritize and meet deadlines
  • Excellent communication skills, on both technical and non-technical issues
  • Knowledge of use of network analyzers, threat modeling and penetration testing tools
  • Prior experience or familiarity with working in Cyber Defense Operations or SOC.
  • Detailed technical knowledge of security engineering, computer and network security, authentication, security protocols and applied cryptography
Relevant Information
Cybersecurity Analyst Skills, Experience, and Job Requirements
Cybersecurity Architect Skills, Experience, and Job Requirements
Cybersecurity Consultant Skills, Experience, and Job Requirements