Security Operations Engineer

Dragos

Remote / United States of America
  • Job Type: Full-Time
  • Function: IT
  • Post Date: 05/12/2021
  • Website: dragos.com
  • Company Address: 1745 Dorsey Road, Suite S, Hanover, Maryland 21076, US

About Dragos

Provides complete ICS (Industrial Control System) threat detection and response technology designed to protect critical systems and infrastructure.

Job Description

Our mission at Dragos is to protect the world’s most critical infrastructure from adversaries who wish to do it harm. We help defend industrial organizations that provide us with the tenets of modern civilization: running water, functioning electricity, and safe industrial working environments.

The IT Security team is responsible for securing Dragos infrastructure and data. IT security is vital to ensuring a strategic Information Security program that adapts to ever-changing environments, risks, and vulnerabilities.

The IT Security team is looking for an experienced Security Operations Engineer to expand our internal information security team. This role will focus on providing incident analysis and triage; improving incident response capabilities by tasks such as developing SIEM correlation rules, adding log sources, and leading purple team exercises to validate detections; documenting playbooks to formalize support through training junior staff; and supporting initiatives to mature the information security program.

Responsibilities

        Participate in the design of Security Operations Center (SOC) capabilities, processes, and maturity
        Seek and implement detective controls across all enterprise platforms
        Tune and build detection logic and correlation rules in SIEM solution
        Respond to system anomaly events, perform triage to validate, and work with teams and third-party vendors to resolve
        Participate in security incident investigations and prepare incident response reports
        Track, monitor, and report metrics to gauge the effectiveness of SOC functions
        Fuse information across all security domains to ensure holistic situational awareness
        Support policy and standards development
        Develop and participate in incident response exercises
        Monitor logs and other data sources to hunt for indicators of compromise across the organization
        Work closely with engineers and developers to improve Dragos’ security posture
        Provide technical consultation and advanced expert advice to reduce risk

Requirements

        5+ years of experience
        Experience with a variety of information security toolsets
        Network, server, and application log analysis and correlation
        Practical knowledge and experience working in cloud environments and IAM solutions (AWS, GCP, etc.)
        Knowledge of Agile and secure SDLC
        Ability to communicate security risks and recommendations effectively with technical and non-technical audiences focusing on actionable and measurable improvements
        BS in Computer Science or equivalent experience
        Ability to work in a fast-paced team-oriented environment where collaboration is embraced

Nice to have/Preferred

        One or more certifications (CISSP, OSCP, GPEN, OSCE, GCIA)
        Software development or scripting experiences (Python, Shell, Java, JSON, Scrum, Jira, etc.)
        Contributions to the security community (public research, pen test, bug bounty, etc.)
        Familiarity with network and web application protocols (HTTP, HTTPS, TCP/IP, SAML 2.0, OAuth 2.0, Rest APIs, etc.)

Our mission at Dragos is to protect the world’s most critical infrastructure from adversaries who wish to do it harm. We help defend industrial organizations that provide us with the tenets of modern civilization: running water, functioning electricity, and safe industrial working environments.

We are practitioners who have lived through and solved real security challenges. Our team members have responded to incidents including the Ukraine 2015 power grid attack, analyzed the CRASHOVERRIDE malware responsible for the Ukraine 2016 electric grid attack, analyzed the TRISIS malware responsible for the petrochemical facility attack in 2017, built and led the National Security Agency mission to identify nation-states breaking into ICS, and performed assessments on hundreds of assets around the world.

We offer competitive salaries, equity, and a comprehensive benefits package including medical, dental, vision, disability, 401K, and life insurance.

Dragos is proud to be an equal opportunity workplace dedicated to pursuing and hiring a diverse workforce. Come join us!

Related Jobs

Senior Technical Support Engineer

Dragos - Hanover, MD, USRemoteUnited States of America

Senior Field Operations Engineer (UAE)

Dragos - Dubai, AE

Senior Front-End Engineer

Dragos - Hanover, MD, USRemoteUnited States of America

Senior/Staff DevOps Engineer

Dragos - RemoteUnited States of America

Performance Test Engineering Technical Lead

Dragos - RemoteUnited States of America
Disclaimer: Local Candidates Only
This company does NOT accept candidates from outside recruiting firms. Agency contacts are not welcome.