Security Engineer

ControlUp is the market leader in IT Monitoring, Self-healing and Analyzing virtual environments, creating solutions that save IT organizations time, money, and stress. We are seeking a security Engineer which will design, implement and maintain our security operations. He/she will need to have a combination of SecOps capabilities with system and Infrastructure orientation. Responsibilities will encompass network architecture, implementing and maintaining diverse security controls, possessing a thorough understanding of the organization's various environments, and establishing secure environments. As a SecOps Engineer at ControlUp, you will play a pivotal role in safeguarding our entire infrastructure against cyber attacks. Your responsibilities will include continuously developing and maintaining robust security controls, implementing secure-by-design principles in our infrastructure, and ensuring the protection of our corporate assets.

Responsibilities:

• Establishing IT Security projects from inception to execution including maintenance.
• Creating automation for various applications to enhance security and streamline processes.
• Troubleshooting issues to identify root causes and prevent recurrence in Linux and Windows and macOS environments
• A passion and talent for aligning security architecture, plans, controls, processes, policies and procedures with security standards and operational goals.
• Design new detection techniques and improve current capabilities.
• Identify gaps within existing security tools and recommend additional mitigations.
• Design, development and testing security architectures of cloud-based systems.
• Analyze security logs, monitoring logs, firewall logs, intrusion prevention system logs, and network and correlate logs using numerous database query techniques and tools.

Requirements:

• 3+ years in Cyber Security Operations or equivalent experience.
• Strong understanding of information security principles and practices (confidentiality, integrity, availability)
• Proficiency in security monitoring tools and technologies (SIEM, EDR, SOAR, etc.)
• Experience managing and securing Active Directory environments
• Experience with security incident detection, analysis, response, and remediation processes
• Hands-on skills with security data sources (logs, network traffic, endpoints, etc.)
• Working knowledge of cloud security (AWS, Azure) and virtualization concepts
• Experience with vulnerability management and patch management processes
• Programming and scripting abilities (Python, PowerShell, Bash) for security automation
• Ability to collaborate cross-functionally with IT, DevOps, and business teams
• Experience configuring, managing and analyzing firewall policies and rules
• Knowledge of Privileged Access Management Solutions - advantage.
• Drive for continuous learning to keep up with evolving security landscape