Job Description
JOB SUMMARY
We are seeking a Cyber Security Engineer II with strong analytical skills and a detailed understanding of cybersecurity methodologies, who will be part of a cyber security team that is helping utilities secure the critical infrastructure electric power grid by identifying and providing security patches and workarounds for vulnerable grid cyber assets. The cyber security engineer will perform real-time proactive security monitoring and reporting on various security enforcement systems, such as SIEM, log management, anti-virus, Internet content filtering/reporting, malicious code prevention, IDS & IPS, etc. Perform the role of primary Incident Coordinator for security events requiring focused response, containment, investigation, and remediation.
As well as maintaining an understanding of threats, vulnerabilities, and exploits that could impact grid assets, the Cyber Security Engineer will also contribute to cyber security assessments of new and existing products in conjunction with Engineering. To ensure success, a Cyber Security Engineer must display an excellent understanding of technology infrastructures using Firewalls, VPN, Data Loss Prevention, IDS/IPS, Web-Proxy, and Security Audits. Top candidates will be comfortable working with a variety of technologies and troubleshooting security problems.
This role will be based in our MARLBOROUGH, MA office reporting to the Senior Director of Solutions.
ESSENTIAL JOB FUNCTIONS
a) relevant security patches and software updates
b) cyber threats
c) System security monitoring data
a) Work as part of a project team in delivering security patches to customers
b) Work with Engineering on various security related issues
c) Participate in security product development by contributing to requirements, testing and insights
d) Contribute to system security improvement projects
a) Interact with customers on security analysis products
b) Assist customers in developing and applying workarounds for vulnerabilities
c) Assist customers in applying and testing security patches
a) Utilize security tools to monitor threat environments
b) Develop and maintain incident response playbooks
c) Coordinate incident response procedures
d) Responding to all system and/or network security breaches
a) Assist with the design and development of security monitoring systems
b) Assist with the design of controls to reduce attack surface
c) Help design controls to limit damage from intrusions and maintain continuity of operations
d) Troubleshoot security and network problems
e) Testing and identifying network and system vulnerabilities
DECISION-MAKING LATITUDE
Develop and release security analysis reports to customers
Identify security incidents and coordinate response
Make recommendations on remediation of security risks
QUALIFICATIONS
EDUCATION:
Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, Electrical Engineering or related field
REQUIRED EXPERIENCE:
· Bachelor's degree and minimum 2 years of experience as a security analyst or security engineer working with incident detection, incident response, and forensics
· Alternatively, a Master's degree in the above mentioned areas of study, plus the equivalent of 1 year related work experience (internships and experience within education considered)
· Experience with tools such as Wireshark, nmap and Nexpose; log management platforms; and security management platforms
· Self-starter and independent worker with ability to multitask and prioritize
· Meeting deadlines while under pressure
· Display professionalism and ability to work with team members of varying levels of expertise
· Familiarity with Linux environments, basic working knowledge of security testing tools like Kali Linux, BurpSuite, Nmap, ZAP, Nessus, Wireshark
· Experience with Python, C++, Java, Power Shell
· Conduct security assessments and vulnerability scans on Doble’s infrastructure and products, and work with application owners on remediation
· Experience with security for embedded devices
· Demonstrate good knowledge of the latest security vulnerabilities, threats, attack surface, and remediation techniques
PREFERRED EXPERIENCE (NOT REQUIRED):
· Master’s degree in computer science with cyber security
· Experience in NIST, ISO 2701 or NERC CIP implementation
· Relevant Security-related certification, e.g., Security+
· Familiarity with information security exploits, threats, and adversarial tactics, e.g., OWASP Top 10, MITRE ATT&CK
· Familiarity with security best practices, standards, and frameworks, e.g., CSA Controls Matrix, NIST CSF
KNOWLEDGE, SKILLS & ABILITIES:
· Demonstrated skills and knowledge of security concepts including TCP/IP, Network and System Vulnerabilities, Basic Security Controls (e.g. Endpoint Security, Firewalls, vulnerability scanning), Basic Security procedures (patching, system hardening etc.), Fundamental understanding of a secure software development lifecycle
· Great awareness of cybersecurity trends and hacking techniques
· Strong attention to detail with an analytical mind and outstanding problem-solving skills
· Strong written and verbal communication skills to clearly convey analysis
· Perform technical security assessments
· Good understanding of Linux & Windows based systems security, Azure security, and web application security
· Ability to collaborate across functions
· Keep abreast of changes to security industry best practices, applicable laws, and security alerts from relevant vendors and sources (ex: US-CERT)
PHYSICAL REQUIREMENTS:
While performing the duties of this job the employee is often required to stand, sit, use computers, read, write, type, use fax machines, use copy machines, file paperwork, use telephones, and utilize written and oral communication to interact with clients, co-workers and customers. Reasonable accommodations may be made to enable individuals to perform the essential functions of this job. Must be capable of lifting 30 pounds.
EQUAL OPPORTUNITY EMPLOYER/PROTECTED VETERANS/INDIVIDUALS WITH DISABILITIES
We are an Equal Employment Opportunity employer that values the strength diversity brings to the workplace. All qualified applicants, regardless of race, color, religion, gender, sexual orientation, marital status, gender identity or expression, national origin, genetics, age, disability status, protected veteran status, or any other characteristic protected by applicable law, are strongly encouraged to apply.
The Americans with Disabilities Act of 1990 (ADA) prohibits discrimination by employers, in compensation and employment opportunities, against qualified individuals with disabilities who, with or without reasonable accommodation, can perform the “essential functions” of a job. A function may be essential for any of several reasons, including: the job exists to perform that function, the employee holding the job was hired for his/her expertise in performing the function, or only a limited number of employees are available to perform that function.
Company Description
MISSION: : To ensure that all people have Reliable, Safe & Secure Energy. VISION: To be the leading global provider of advanced diagnostics and engineering expertise for the energy industry. VALUES: Service, Integrity, Collaboration, Innovation and Continuous Improvement By joining Doble, you will have an opportunity to make an impact by building a better future for the electric power industry. We believe in a diverse corporate culture that promotes teamwork, individual growth, work-life balance and fun. Please see more at www.doble.com