Job Description
Pomeroy is looking for an innovative and motivated consultant who under general direction with a high level of autonomy, uses extensive knowledge and skills obtained through education and experience to provide security solutions to leadership and technical teams. This role will provide expertise in Security Information Event Management and Monitoring services and. Candidate must have proven record of working with leading SIEM technologies such as Splunk, QRadar, ArcSight or similar. The candidate will possess excellent subject matter expertise over a wide variety of similar security technologies and collaborate with other engineering teams. demonstrate personal flexibility and focused delivery to ensure the team deliver quality solutions and increase customer satisfaction.
FLEXIBLE AND DYNAMIC WORKING APPROACH AND WILLING TO TRAVEL AWAY FROM HOME AT SHORT NOTICE FOR EXTENDED PERIODS.
RESPONSIBILITIES
• Work autonomously on high profile, complex and/or high risk technology initiatives with significant impact to the organization
• Assist with the development of resilient and scalable SIEM deployments
• Work closely & collaboratively with Internal Engineering, Deployment & Operations teams to drive design adoption across IT
• Brief executive leaders on potential emergent threats and ongoing efforts to proactively address potential cyber security risks
• Influence the security strategy by improving the collective strength of the security team and articulating the capabilities needed to optimally manage security risks
• Engage in Software Development Lifecycle to collaboratively ensure new products, platforms, and technologies meet or exceed security engineering requirements
• Design, build and implement world-class security systems for global clients
• Identify and communicate current and emerging security threats; Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
• Design security architecture elements to mitigate threats as they emerge
• Define requirements and create solutions that balance business requirements with information and cyber security requirements
• Work with platform and security engineering leadership to interactively improve Security Development Lifecycle investments.
• Willing to travel up to 50%
TECHNICAL REQUIREMENTS:
• Understanding of IT and OT technologies
• Technical experience with SIEM technologies such as SPLUNK, ArcSight and QRadar.
• Expertise in assessing and selecting security tools and solutions that best meet the stated Security need of clients
• Extensive related work experience in building complex Security Engineering Infrastructure solutions with the ability to be a key contributor in a complex and critical environment
• Experience with security regulatory / compliance requirements
• Experience in creating high level and technical presentations and communication skills to explain the approach to a varying audience
• Excellent spoken and written communication to explain methods, findings, risks and conclusions, and recommended remediations to both technical and non-technical audiences
• An in-depth understanding of computer systems and their operation
• Attention to detail, to be able to plan and execute tests whilst considering client requirements and potential impact on business and its users
• Ability to think creatively and strategically to penetrate security systems
• Good time management and organizational skills to meet strict client deadlines
• Ethical integrity to be trusted with a high level of confidential information
• Commitment to continuously updating technical knowledge base
• Teamwork skills, to support colleagues and share techniques
• Exceptional problem-solving skills and the persistence to apply different techniques to get the job done
• Adapts to new different or changing requirements, quickly grasps new concepts adapts and reflects on lessons learned – comfortable with ambiguity, analyzes and evaluates, defines problem/challenge, identifies alternatives and makes timely decisions
• Highly motivated individual with a track record of successfully implementing security solutions across line of business boundaries.
• Thrives in a fast-paced environment, managing multiple deadlines and competing priorities.
QUALIFICATIONS
• Education and Accreditation • University, post-graduate degree or 10+ years' experience
• 4 + years of professional experience within Information Security with a focus on SIEM technologies
• Strong academic background (e.g., computer science, engineering)
• Certification in one or more of Splunk Admin, Splunk developer, Azure, Security+, CISSP, CISM or CISA
• Demonstrated experience in training and mentoring Junior staff in key basic SIEM skills and techniques
GOOD TO HAVES:
• TOSCA Blueprint and SALTSTACK script creation a definite plus
• Understanding of secure communications and technologies
• Ability to script or write code
• Comparable knowledge with products of other leading SIEM vendors like Splunk, ArcSight, and QRadar is highly preferred
• Contemporary base operating systems and major database platforms architectural knowledge for enterprise environments including knowledge of OT and embedded systems
• Demonstrate broad knowledge in other technical areas to properly manage complex integration efforts
• SIEM industry awareness including market leaders and key business drivers
• A good understanding of vulnerability tooling and methodology
Provides design, planning, and direction for data security, systems, networks, applications and processes, in order to maintain the confidentiality, integrity, availability, and privacy of its systems and the information in those systems. Education: Bachelor's Degree. Experience: 12+ years.
Company Description
For over 40 years, Pomeroy has enabled technology that enhances and empowers people in the workplace. Today we partner with our clients to help them transform from a “one size fits all” delivery model to a personalized human experience that is a differentiator and the key to delivering digital transformation and better business outcomes. It’s all about delivering an exceptional experience, one that is simple, intuitive and secure – anytime, anyplace and from any device. Our workplace is no longer a physical location or workstation, rather it’s the place where a person can work at any given time with full capacity to do their job productively and effectively. We deliver that experience by connecting the dots between people and their applications, across a network that is intuitive and automated to where the applications live, today that is in a hybrid IT environment, on premise and in the cloud, with security an integral part of everything we do. We provide managed IT services to support our clients from our locations throughout North America, Latin America and Europe. Our service delivery model combines monitoring, prevention and resolution in an approach that is always aware, proactive and responsive. Our field engineers support more than 50,000 sites across North America alone and respond to more than 3 million incidents and user requests annually covering 2 million desktops, laptops, smartphones and tablets, servers, printers and other peripherals. Our expertise connecting the workplace, network and hybrid IT is industry recognized, including Gartner recognition for over 17 years as one of a select few who can deliver agile, quality Managed Workplace Services. And although technology and innovation are key ingredients in our solutions, our people are our greatest asset. Over 3,000 highly motivated and diverse, dedicated to supporting our 700+ clients, from midsize organizations to large, well-known US and global brands, 15 in the Fortune 500. “The Pomeroy Way” is our guiding principle. It’s a conscious understanding that who we are as individuals and how we choose to interact with others is a direct reflection of who we are as a company and how we will be viewed as an organization. It defines our company and our culture as the place to be, the place to stay and the place to grow.