Cyber Defense Principal Security Engineer
1 day ago
Citizens is seeking a highly skilled Cyber Defense Principal Security Engineer to join our team. As a key member of our Cybersecurity Operations team, you will be responsible for developing, maintaining, and troubleshooting security tool detections/rules used for detecting cyber-attacks, intrusions, and data loss incidents.
Key Responsibilities:- Develop and Maintain IDS/IPS Policies and Rules: Regularly review and update IDS/IPS policies and rules to ensure they are current and effective. Develop new detection rules based on emerging threats and intelligence.
- Tune IDS/IPS Systems: Continuously optimize IDS/IPS configurations to minimize false positives and enhance detection accuracy. Conduct regular performance assessments and make necessary adjustments.
- Develop Detections for SIEM and Other SOC Tools: Implement security use cases and transform them into correlation queries, templates, rules, and alerts across multiple cloud environments and on-premises technologies.
- Create Technical Documentation: Document IDS/IPS configurations, tuning procedures, and any changes made to policies and rules. Ensure documentation is up-to-date and accessible to the team.
- Monitor Security Tool Health and Performance: Ensure that IDS/IPS are functioning properly. Address any performance issues and coordinate with teams/vendors for support if necessary.
- Integrate Cyber Threat Intelligence: Enhance IDS/IPS capabilities by integrating relevant threat intelligence feeds and indicators of compromise (IOCs).
- Develop Reports and Dashboards: Create and maintain reports and dashboards that provide visibility into IDS/IPS activity and effectiveness.
- Collaborate on SIEM Functional Requirements: Work with the SIEM team to ensure effective logging, event collection, normalization, correlation, reporting, and customization that supports IDS/IPS data.
- Support Security Engineering Team: Assist in resolving complex technical issues related to IDS/IPS systems.
- Mentor and Train Team Members: Provide guidance and training to junior team members on IDS/IPS best practices, rule creation, and tuning.
- Expert Level Knowledge of Cybersecurity Operations: Excellent understanding of Cybersecurity Operations and Incident Response processes.
- IDS/IPS Technologies: Expert level knowledge of IDS/IPS technologies (Cisco Firepower, Palo Alto, etc.).
- Detection Creation/Tuning Concepts: Expert level knowledge of detection creation/tuning concepts and best practices.
- Cloud Computing Platforms: Experience working with cloud computing platforms such as Amazon Web Services, Azure, etc.
- Operating Systems: Solid understanding of various operating systems (Window, Unix, Linux, AIX, etc.).
- Regular Expressions: Advanced ability to develop regular expressions.
- Programming Languages: Advanced ability to automate tasks using a preferred language (e.g. Snort).
- Communication Skills: Excellent oral and written communications skills.
- Analytical Skills: Strong analytical skills.
- Self-Motivation: Self-motivation with the ability to work under minimal supervision.
- 7 Years of Proven Experience: 7 years of proven hands-on experience in IDS/IPS concepts.
- SOC Technologies: Experience with SOC technologies such as SIEM, EDR, anti-virus, network-based threat detection, and netflow.
- Enterprise Logging Standards: Strong understanding of enterprise logging standards.
- Cyber Kill Chains: Understanding of cyber kill chains and campaign strategies such as MITRE ATT&CK.
- APIs: Ability to interact with common APIs.
- Team Collaboration: Proven successful working relationships with teams outside of Cybersecurity.
- Bachelor's Degree: Bachelor's Degree (Security / IT Related) or equivalent combination of experience.
- Industry Certifications: A combination of relevant industry certifications including, but not limited to CISSP, GREM, GCIH, GCIA, CEH, GCED, CISA, etc.
-
Cyber Defense Principal Security Engineer
1 week ago
JOHNSTON, United States Citizens Full timeCyber Defense Principal Security EngineerCitizens is seeking a highly skilled Cyber Defense Principal Security Engineer to join our team. As a key member of our Cybersecurity Operations team, you will be responsible for developing, maintaining, and troubleshooting security tool detections/rules used for detecting cyber-attacks, intrusions, and data loss...
-
Cyber Defense Principal Security Engineer
4 weeks ago
JOHNSTON, United States Citizens Full timeDescriptionThe Cyber Defense Principal Security Engineer is a senior individual contributor responsible for developing, maintaining, troubleshooting, tuning, and documenting security tool detections/rules used for detecting cyber-attacks, intrusions, and data loss incidents. In this role, you will possess an expert level understanding of security use cases...
-
Johnston, United States Citizens Financial Group, Inc. Full timeJob SummaryWe are seeking a highly skilled Cyber Defense Cloud and Container Security Manager to join our team at Citizens Financial Group, Inc. This is a hands-on technical manager role responsible for the day-to-day team operations and part of our Cyber Defense team.Key ResponsibilitiesLead and manage a team of engineers responsible for cloud and container...
-
Cyber Defense Cloud and Container Security Manager
24 hours ago
Johnston, United States Citizens Financial Group, Inc. Full time3 days Hybrid role from any of our Engineering locations in RI, NJ, NC, TX or AZ . Role is not relocation eligible. The Cloud and Container Security Manager is a hands-on technical manager role responsible for the day-to-day team operations and part Cyber Defense, Manager, Security, Cloud, Technical, Business Partner, Technology, Banking
-
Cyber Defense Cloud Security Manager
3 weeks ago
Johnston, United States Citizens Financial Group, Inc. Full timeAbout the RoleCitizens Financial Group, Inc. is seeking a skilled Cloud and Container Security Manager to join our Engineering team. This is a 3-day hybrid role that can be based in any of our locations in RI, NJ, NC, TX, or AZ.Key ResponsibilitiesLead day-to-day team operations and partake in Cyber Defense efforts as a technical manager.Collaborate with...
-
Senior Security Engineer
3 weeks ago
JOHNSTON, United States Citizens Full timeAbout the RoleCitizens is seeking a highly skilled Cybersecurity Principal Engineer to join our team. As a key member of our Cybersecurity team, you will be responsible for developing, maintaining, and troubleshooting security tool detections/rules used for detecting cyber-attacks, intrusions, and data loss incidents.Key ResponsibilitiesDevelop and Maintain...
-
Cyber Security Threat Analyst
2 days ago
Johnston, Rhode Island, United States FM Global Full time{"title": "Cyber Security Threat Analyst", "content": "Protecting Global Businesses from Cyber ThreatsFM Global is a leading property insurer of the world's largest businesses, providing engineering-based risk management and property insurance solutions. As a Cyber Security Threat Analyst, you will be part of our dynamic team responsible for detecting and...
-
Cyber Risk Analyst
1 day ago
Johnston, Rhode Island, United States FM Global Full timeJoin FM Global's Cyber Co-op ProgramWe are a leading property insurer of the world's largest businesses, providing engineering-based risk management and property insurance solutions to over one-third of FORTUNE 1000-size companies.As a Cyber Co-op, you will be part of our Cyber Threat Services Teams, responsible for detecting and responding to cyber security...
-
Johnston, United States Citizens Financial Group, Inc. Full timeJob SummaryCitizens Financial Group, Inc. is seeking a highly skilled Cloud and Container Security Manager to join our team. As a key member of our Attack Surface Management group, you will be responsible for defining, driving, and delivering the vision and strategy for cloud and container security.Key ResponsibilitiesDevelop technical roadmaps and...
-
Principal Security Engineer
6 days ago
JOHNSTON, United States Citizens Full timeDescriptionThe Principal Security Engineer is a senior level individual contributor role that will primarily perform governance and security functions related to cloud connectivity, design, technical configuration, and access control in the enterprise IT infrastructure. Responsibilities will include (but will not be limited to): Performing governance over...
-
Johnston, United States Citizens Financial Group, Inc. Full timeJob SummaryCitizens Financial Group, Inc. is seeking a highly skilled Cloud and Container Security Manager to join our team. As a key member of our Attack Surface Management group, you will be responsible for defining, driving, and delivering the vision and strategy for cloud and container security.Key ResponsibilitiesDevelop technical roadmaps and...
-
Cyber Security Specialist Co-op
2 days ago
Johnston, RI , USA, United States FM Global Full timeAbout the RoleWe are seeking a highly motivated and detail-oriented Cyber Security Specialist Co-op to join our team at FM Global. As a member of our Cyber Threat Operations and Engineering (CTOE) Team, you will play a critical role in implementing, operating, maintaining, and growing security solutions to mitigate cyber security threats.Key...
-
Cyber risk management
5 days ago
Johnston, RI, United States FM Global Full timeWe are a leading property insurer of the world's largest businesses providing more than one-third of FORTUNE 1000-size companies with engineering-based risk management and property insurance solutions. FM helps clients maintain continuity in their business operations by drawing upon state-of-the-art loss-prevention engineering and research; risk management...
-
Corporate Security Specialist
2 days ago
Johnston, United States Citizens Full timeTransformative Career OpportunityCitizens is seeking a talented Corporate Security Specialist to join our Enterprise Technology & Security Development Program (ETSDP). As a key member of our team, you will play a critical role in developing and implementing cutting-edge security solutions to protect our critical IT systems.Program OverviewThe ETSDP is a...
-
Corporate Security Specialist
1 week ago
Johnston, United States Citizens Full timeTransformative Career OpportunityCitizens is seeking a talented and motivated individual to join our Enterprise Technology & Security Development Program (ETSDP). As a Corporate Security Specialist, you will play a critical role in supporting and protecting critical IT-related systems in a complex enterprise environment.Program OverviewThe ETSDP is a...
-
Corporate Security Specialist
1 week ago
Johnston, United States Citizens Full timeTransformative Career OpportunityCitizens is seeking a talented Corporate Security Specialist to join our Enterprise Technology & Security Development Program (ETSDP). As a key member of our team, you will play a critical role in developing and implementing cutting-edge security solutions to protect our critical IT systems.Program OverviewThe ETSDP is a...
-
Senior Administrative Assistant
7 days ago
Johnston, United States Factory Mutual Insurance Company Full timeJob SummaryThe incumbent in this function provides critical support to the Engineering work group and its managers, including the Principal Engineer, Chief Engineer, Cyber Hazards and Operations Engineering groups.Key ResponsibilitiesPrepare and coordinate administrative tasks for the Engineering team.Provide administrative support to the Principal Engineer,...
-
Senior Application Security Engineer
3 days ago
Johnston, United States Citizens Financial Group, Inc. Full timeJob SummaryCitizens Financial Group, Inc. is seeking a highly skilled Senior Application Security Engineer to join our team. In this role, you will be responsible for identifying, interpreting, and helping drive vulnerability remediation in enterprise applications.Key ResponsibilitiesParticipate in the coordination and presentation of application...
-
Senior Administrative Assistant
5 days ago
Johnston, United States FM Global Full timeAbout the RoleFM Global is a leading property insurer of the world's largest businesses, providing engineering-based risk management and property insurance solutions. As a Senior Administrative Assistant - Engineering, you will play a crucial role in supporting the work group and its managers, including the Principal Engineer, Chief Engineer, Cyber Hazards...
-
Cyber Co-Op
4 weeks ago
JOHNSTON, United States FM Global Full timeWe are a leading property insurer of the world's largest businesses providing more than one-third of FORTUNE 1000-size companies with engineering-based risk management and property insurance solutions. FM helps clients maintain continuity in their business operations by drawing upon state-of-the-art loss-prevention engineering and research; risk management...