Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

Sr Security Engineer(Offensive Security or GIAC Certification must) - REMOTE

C

CCS IT

Sr Security Engineer(Offensive Security or GIAC Certification must) - REMOTE

Madison, WI
Full Time
Paid
Similar Jobs
  • Responsibilities

    MUST HAVE

    At least one certification from Offensive Security or GIAC, including

    OSCP, OSCE, GCIH, GCIA, GCWN, GCFA, GPEN, GXPN, GCFE, GNFA, or GDSA.

     

    Senior Security Engineer with hands-on, well-rounded security background

    and experience in multiple domains. To be successful, the Security Consultant must be able to multi-task

    in a fast-paced and dynamic environment.

    This overall effort will be initially scoped for a six-month period, with the possibility of one or more six-

    month extensions.

    Essential activities:

    • Experience securing hybrid infrastructures (on-premise/cloud)

    • Design, configure, test, and enhance security solutions, including but not limited to:

    o Microsoft 365 / Microsoft Azure

    o Virtualization software

    o Identity and Access Management System

    o VPN

    o IDS

    o SIEM

    o Web Proxy

    o Data Loss Prevention

    o Firewall and other Network Devices

    • Hands-on systems administration experience in a Windows environment

    • Perform vulnerability assessments against a wide array of technologies and platforms

    • Conduct incident response and investigation for elevated security incidents

    The ideal candidate:

    • 10+ experience with general security and risk mitigation knowledge across multiple technical

    disciplines.

    • Bachelor’s degree in Information Systems, Computer Science, Infrastructure/Networking or

    related field.

    • Security certification required: At least one certification from Offensive Security or GIAC, including

    OSCP, OSCE, GCIH, GCIA, GCWN, GCFA, GPEN, GXPN, GCFE, GNFA, or GDSA.

    • Experience in configuring and applying technical security controls to on-prem/cloud.

    platforms, such as Azure, endpoints, databases, operating systems, and network devices.

    • Proficiency in one or more scripting languages (e.g., Python, PowerShell).

    • Experience with cybersecurity frameworks and threat methodologies, including the MITRE

    ATT&CK Matrix, CIS Critical Security Controls and NIST Cybersecurity Framework.

    • Strong analytics skills and ability to manage and coordinate multiple ongoing projects.

    • Demonstrated ability to communicate effectively using verbal, written, and interpersonal

    communication skills.

    General Comments

     

    Top 3 Must-Haves

    1) At least one certification from Offensive Security or GIAC, including

    OSCP, OSCE, GCIH, GCIA, GCWN, GCFA, GPEN, GXPN, GCFE, GNFA, or GDSA.

    2) Background as a systems admin/network admin. Doesn't necessarily need to come from ONLY a security background. Ideally they have had exposure to duties as a sys. admin, networking as well as a variety of security tools.

    3) Experience recommending and implementing new ways of doing things/new idea. Client looks at this person as a SME - someone with a lot of experience who can understand how things are currently done, and how they can be improved.