Security Engineer

Job Description

Job Description

All Lines Technology is currently searching for a Security Engineer (SIEM) in Pittsburgh, PA to join a dynamic and growing security team responsible for continually improving the organization’s security posture. This role focuses on managing and enhancing network, system, identity, and cloud security capabilities. Responsibilities include administering SIEM, EDR, and identity protection solutions, as well as leading security event detection, incident response, response automation, threat hunting, and more.

• Demonstrate expertise in information security solutions, operational practices, threats, and emerging technologies.
• Provide subject-matter expertise and administer CrowdStrike EDR/NGAV, Identity Protection, and NG-SIEM.
• Lead and improve security event management processes, develop and execute SOPs, and conduct incident response preparation, orchestration, investigation, and reporting.
• Liaise with managed security service providers to ensure continuous process and relationship improvements.
• Administer security solutions including CrowdStrike EDR/NGAV, Identity Protection, NG-SIEM, SEG, PAM/VPAM, EPM, vulnerability scanning, and other security-related technologies.
• Develop methods and controls for cloud migration strategies including CNAPP, CI/CD pipeline, DevOps guardrails, and Azure CSP controls and monitoring.
• Conduct threat and vulnerability analysis and coordinate attack surface reduction configuration implementation and patching remediation with technical stakeholders.
• Maintain awareness of current and emerging threats, vulnerabilities, and attack vectors; participate in threat modeling, analysis, and reporting.
• Deliver reliable and scalable solutions and services that reduce risk while balancing operational impact and usability.
• Develop end-user awareness training and reinforce security concepts through engagement, communication, and simulation.
• Participate in security governance; develop policies, processes, procedures, measures, and metrics; ensure compliance with security requirements.
• Provide exceptional customer service and offer security and operational consulting, project and design support, cross-training, and troubleshooting to IT administrators, staff, clients, and vendors.

• Strong background in Information Systems and Technology with at least five (5) years of experience in Information Security.
• Ability to communicate clearly and effectively with both technical and non-technical audiences.
• Knowledge and experience with various information security processes and tools.
• Ability to identify security technology risks.
• Ability to visualize, plan, and execute process improvements that enhance the efficiency and delivery of security capabilities.
• Proficient knowledge of IP networking and public cloud security principles.
• Experience managing security platforms such as EDR, PAM, MFA, SIEM, and NGFW.
• Expertise in malware detection technologies and remediation.
• Experience in security event management and incident response processes, tools, and procedures.
• Expertise with technologies from providers such as CrowdStrike, Palo Alto, Tenable, and Azure.
• Expertise in network design, operation, security, and monitoring; Windows and Linux desktop/server and database security.
• Experience with scripting and query languages such as Python, PowerShell, CQL, and XQL.
• Understanding of ISO/IEC 27001:2022 ISMS principles.

Powered by JazzHR

79swWcHzhu