IrvineRecruiter Since 2001
the smart solution for Irvine jobs

Senior SecOps Engineer

Company: IDIQ
Location: Irvine
Posted on: May 14, 2022

Job Description:

IMMEDIATE OPENING AVAILABLE

FULL TIME SALARY + Health Benefits + Paid Holidays + 401K retirement + Paid Time Off (PTO) and more!!

ABOUT US:

The Identity Intelligence Group known as IDIQ is currently recruiting for a Senior SecOps Engineer. IDIQ is a privately-owned company that has been in business since 2009. We provide identity theft and credit reporting services to consumers nationwide under our brands such as IdentityIQ -, CreditScoreIQ - and MyScoreIQ -. Our company is currently ranked in the top 5 in our industry and has been honored as a Top-10 Ranked Company by BestCompany.com, earned the 2019 Stevie Bronze Winner, and the Enterprise Security Top 10 Fraud and Breach Protection Solution Provider for 2019. We have been recognized on TV, online, and radio by shows such as Modern Living with Kathy Ireland. To learn more about our flagship service visit our website at IdentityIQ.com.

ESSENTIAL FUNCTIONS AND RESPONSIBILITIES:

At IDIQ, the Senior SecOps Engineer, you'll be responsible for protecting the confidentiality, availability, and integrity of information assets on premise and in cloud environments such as GCP and Azure. The ideal candidate will have multiple years of experience in managing cloud infrastructure, deploying/maintaining security monitoring solutions, automation, vulnerability management and other SecOps skills in compliance driven environments. This position will collaborate with Engineering and DevOps teams to analyze and perform event correlation, create dashboards and reporting content, troubleshoot, and remediate security issues. You will act as an SME and conduct research and development activities; performing due diligence activities to identify, evaluate, and validate security technologies needed or required to meet the security and business goals of IDIQ and the Security Operations. We utilize various (in place) tools such as AlertLogic, Veracode, Elastic, Imperva, O365 Security, etc. Must possess a very analytical, detail-oriented mindset and approach to reviewing security alerts regardless of their severity.

Role Responsibilities:

  • Develop and maintain security strategy; ensure security strategy covers prevention along with detection and response
  • Build and implement security controls for our platform and infrastructure, with a focus on security and compliance
  • Collaborate with management to design, implement, and test Ransomware Readiness & Response Plan
  • Collaborate with management to establish and test incident response plans
  • Collaborate with management to identify & manage IDIQ, and partners organizational RISK and vulnerabilities
  • Collaborating with development teams to reduce/remove risks within the design and implementation phases
  • Act as an SME in security best practices, risk, vulnerability, compliance, regulatory, and change management frameworks; maintain awareness and knowledge of security standards, practices, procedures, and methodologies.
  • Responsible for actively monitoring and responding to alerts from various security tools
  • Generate weekly SecOps reports; review weekly priority incidents and remediation
  • Serving as a consultant to team members on security vulnerabilities and their corresponding remediations, ensuring security vulnerability scan outputs are reviewed and appropriate actions are taken
  • Leading remediation of security incidents, working with the organization to prioritize and remediate appropriately; Investigate and respond to any security incidents
  • Oversee PCI compliance and ensuring a successful PCI audit PASS; work with auditor to submit and remediate any PCI compliance requirements.
  • Participates in user training as appropriate, on new or revised systems/applications

    WORK EXPERIENCE:
    • 5 years of experience in technical aspects of cloud, applications, web or mobile
    • 5 years of experience in IT security functions
    • B.S. in Information Technology, Computer Science (or related field)
    • Knowledge and understanding of threat landscapes
    • Knowledge of financial or banking technology control requirements such as PCI
    • Knowledge of cloud identity and authentication methodologies (Kerberos, SAML, OAuth, MFA)
    • Knowledge of cloud platform Role Based Access Control and IAM policies/capabilities

      PREFERRED SKILLS AND EXPERIENCE:
      • Hands-on-experience with SIEMs, Penetration Testing tools, Deceptive tools, Firewalls
      • Strong knowledge of industry standards as they relate to Cloud and Application security management to include ISO, NIST, and Cloud Security Alliance (CSA)
      • Self-motivated with the ability to work independently and as a team member with minimal direction
      • Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
      • Excellent oral and written communication skills. Ability to read/speak/write at a high level. The role requires high level written communication skills.
      • Experience in deployment, management, and configuration, of NSM, MDR, EDR, XDR, UEM, MDM, NAC, Application Control, Phishing and Vulnerability Management solutions
      • Operational level experience in these domains: security engineering, alert triaging, rule writing, incident response, DFIR, threat intelligence and management, vulnerability management, and security control testing
      • Knowledge of security operations across hosting environments (including Cloud)
      • Experience establishing security practices, working with DevOps/SecOps methodologies and processes
      • Experience implementing security monitoring, logging, and alerting (GCP, Azure, O365, onpremise, etc.)
      • Experience with securing Linux/UNIX Windows servers, MS SQL, MySQL, PHP, Apache, IIS.

        POSITION DETAILS:

        This is an exempt position (40 hours+ per week) and is not eligible for overtime. You will participate in a Managed Objective Bonus program of 10%. Days of work are Monday through Friday 8:00 am to 5:00 pm or as scheduled by your supervisor. PM22

        Benefits And Perks

        IDIQ makes available comprehensive benefits including 100% employee medical options, 50% dental and vision (for employee only, dependent coverage available). Other benefits offered include paid time off, life insurance, short-term disability, long-term disability, and a 401k program with employer match. We work in a casual dress attire environment. Enjoy friendly competition with ping-pong tournaments, pool games, and more.

        AAP/EEO Statement:

        Identity Intelligence Group, LLC dba IDIQ does not tolerate discrimination or harassment of employees or applicants. The Company makes employment decisions without regard to actual or perceived: race (including hair texture or protected hairstyles, e.g. braids, locks, and twists), color, religion, religious creed (including religious dress and grooming practices), national origin (including language use restrictions), ancestry, citizenship, disability (mental and physical) including HIV and AIDS, medical condition (including cancer and genetic characteristics), genetic information, marital status, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), gender, gender identity, gender expression, age (40 years and over), sexual orientation, veteran and/or military status, family and medical leave status, domestic violence victim status, political affiliation, and any other status protected by federal, state, or local law.

        BUSINESS OFFICE ENVIRONMENT:

        This position operates in a professional office environment. Office environment can vary with noise levels and stress, from low to moderate.

        PHYSICAL REQUIREMENTS:

        The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand; sit; walk; use hands to finger, handle or feel; and reach with hands and arms. The employee is regularly required to push, move, lift or otherwise bear 10-30lbs. Applications may include but are not limited to repetitive work using a computer keyboard, mouse and headphones while sitting and/or standing at an assigned work desk area.

        Powered by JazzHR

        8oN7JOsih8

Keywords: IDIQ, Irvine , Senior SecOps Engineer, Engineering , Irvine, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

Irvine RSS job feeds