CranstonRecruiter Since 2001
the smart solution for Cranston jobs

Cyber Defense Senior Content Engineer

Company: Citizens
Location: Riverside
Posted on: February 15, 2021

Job Description:


The Cyber Defense Senior Content Engineer is a senior individual contributor responsible for developing, maintaining, troubleshooting, tuning and documenting security tool content/rules used for detecting cyber-attacks, intrusions, and data loss incidents.

The individual will possess a deep understanding of security use cases and the ability to apply them to event data in support of the Security Operations Center's (SOC) monitoring and response efforts.

The Senior Content Engineer will work across multiple technology platforms and interface with other groups at the bank within Corporate Security & Resilience, Technology Services, and the business lines.

Primary Responsibilities Include

  • Developing content for SIEM and other SOC tools to implement use cases and transform them into correlation queries, templates, rules, and alerts across multiple cloud environments and on-premises technologies.
  • Creating technical documentation for the content deployed.
  • Monitoring the health and performance of the security tools after deploying and tuning content.
  • Integrating cyber threat intelligence into defensive systems.
  • Developing reports, dashboards, workflows and metrics to meet the requirements of stakeholders.
  • Collaborating on SIEM functional requirements such as logging, event collection, normalization, correlation, reporting and customization.
  • Supporting the Security Engineering team with SOC related technical issues and incidents.
  • Support content creation and tuning efforts 24x7 as needed.

    Required Skills/Experience

    • Excellent understanding of Cybersecurity Operations and Incident Response processes.
    • Knowledge of Security Information and Event Management (SIEM) technologies (Splunk, QRadar, etc.)
    • Advanced knowledge of content creation/tuning concepts and best practices.
    • Experience working with cloud computing platforms such as Amazon Web Services, Azure, and Office365.
    • Solid understanding of events, related fields in log records, and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies.
    • Solid understanding of various operating systems (Window, Unix, Linux, AIX, etc).
    • Strong ability to develop regular expressions.
    • Ability to automate tasks using a preferred language (e.g. Python).
    • Excellent oral and written communications skills.
    • Strong analytical skills.
    • Self-motivation with the ability to work under minimal supervision.

      Preferred Skills/Experience
      • 5 years of proven hands-on experience in SIEM concepts such as correlation, aggregation, normalization, and parsing, preferably Splunk.
      • Experience with SOC technologies such as IDS/IPS, UTM firewalls, EDR, anti-virus, network-based threat detection, and netflow.
      • Strong understanding of enterprise logging standards.
      • Strong understanding of security tools related to Data Loss Prevention and Privileged User Monitoring.
      • Understanding of cyber kill chains and campaign strategies.
      • Ability to interact with common APIs.
      • Proven successful working relationships with teams outside of Cybersecurity.

        Education, Certifications And/or Other Professional Credentials
        • Bachelor's Degree (Security / IT Related) or equivalent combination of experience
        • A combination of relevant industry certifications including, but not limited to CISSP, GREM, GCIH, GCIA, CEH, GCED, CISA, etc.
          Hours and Work Schedule

          Hours per Week: 40

          Work Schedule: Monday through Friday 8:30AM - 5:00PM

          This position is not available in Colorado

          Why Work for Us

          At Citizens, you'll find a customer-centric culture built around helping our customers and giving back to our local communities. When you join our team, you are part of a supportive and collaborative workforce, with access to training and tools to accelerate your potential and maximize your career growth.

          Equal Employment Opportunity

          It is the policy of Citizens to provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to race, color, ethnicity, religion, gender, pregnancy/childbirth, colleague or a dependent's reproductive health decision making, age, national origin, sexual orientation, gender identity or expression, disability or perceived disability, genetic information, genetic characteristic, citizenship, veteran or military status, marital or domestic partner status, family status/parenthood, victim of domestic violence, or any other category protected by federal, state and/or local laws.

          Equal Employment and Opportunity Employer/Disabled/Veteran

          Citizens is a brand name of Citizens Bank, N.A. and each of its respective affiliates.

Keywords: Citizens, Cranston , Cyber Defense Senior Content Engineer, Engineering , Riverside, Rhode Island

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category

Other Engineering Jobs

Senior R&D Engineer-Medical Device-Catheters
Description: Senior R D Engineer-Medical Device-Catheters Plymouth, MN At Integer, our vision and values are embedded in everything we do -- If you want to work for an organization that values customer focus, teamwork, (more...)
Company: Integer Holdings Corporation
Location: Plymouth
Posted on: 02/27/2021

Manager, Manufacturing Engineering - Stamping Equipment
Description: Manager, Manufacturing Engineering - Stamping Equipment Rivian--is on a mission to keep the world adventurous forever. This goes for the emissions-free Electric Adventure Vehicles we build, and the curious, (more...)
Company: Via Transportation Inc
Location: Plymouth
Posted on: 02/27/2021

Senior Development Engineer
Description: Go further, faster and be StrongerTogether We are more successful together. This is why you have the opportunity to become a star in our team. Our passion makes us a leading international development (more...)
Company: MAHLE GmbH
Location: Plymouth
Posted on: 02/27/2021

Process Engineer Manager
Description: Qorvo Nasdaq: QRVO is All Around You We make a better world possible by providing innovative Radio Frequency RF solutions at the center of connectivity. We combine product and technology leadership, (more...)
Company: Qorvo, Inc.
Location: Plymouth
Posted on: 02/27/2021

Description: At TE, you will unleash your potential working with people from diverse backgrounds and industries to create a safer, sustainable and more connected world.-- Job Overview TE's Medical business unit, (more...)
Company: TE Connectivity Ltd.
Location: Plymouth
Posted on: 02/27/2021

91B Light-Wheel Vehicle Mechanic
Description: As a Light-Wheel Vehicle Mechanic for the Army National Guard you'll ensure that anything that moves on wheels is ready to hit the road. In this role, you will primarily be responsible for supervising (more...)
Company: Army National Guard
Location: Concord
Posted on: 02/27/2021

Automotive Warranty and Bearing Investigation Engineer, NA
Description: Automotive Warranty and Bearing Investigation Engineer, NA Requisition ID: 10730 Category: Manufacturing Contract type: Permanent Automotive Warranty and Bearing investigation Engineer - NA br -- Reports (more...)
Company: SKF Sverige AB
Location: Plymouth
Posted on: 02/27/2021

Chief Engineer
Description: Careers - Crestline Hotels Resorts, LLC - Chief Engineer in Peabody, Massachusetts - Careers at Homewood Suites Boston/Peabody Please Enable Cookies to Continue Please enable cookies in your browser (more...)
Company: Crestline
Location: Peabody
Posted on: 02/27/2021

Vice President - Civil Engineering
Description: The Vertex Companies, IncCareers - The Vertex Companies, Inc - Vice President - Civil Engineering in Weymouth, Massachusetts - Careers at Corporate Headquarters Skip Branding ul li About li Services (more...)
Company: VERTEX
Location: Weymouth
Posted on: 02/27/2021

PCB Design Engineer
Description: PCB Design Engineer This person will be responsible for designing, building and continuously improving the
Company: Boston Technology Corporation
Location: Peabody
Posted on: 02/27/2021

Log In or Create An Account

Get the latest Rhode Island jobs by following @recnetRI on Twitter!

Cranston RSS job feeds