Title - Senior Network & Endpoint Security Engineer

Job Description 

Summary: Security engineer responsible for implementation of deception / honeypot tooling and use cases including agent / decoy deployment, tool configuration, campaign implementation, documentation and SEIM integration. We are looking for someone with 6-8+ years’ engineering experience, able to function as an independent, engineering SME on the team.

Responsibilities:

Implement DB’s honeypot and deception platform following industry best practice, provide SME level knowledge

Facilitate deployment of endpoint agents, perform agent configuration, testing, certification and documentation

Collaborate with Security / Threat teams and End User Computing teams to define targets and coordinate deployment

Configure honeypot / decoy servers to meet threat-based use cases, deploy, document and support campaigns

Configure SEIM integration, manage data feed and alert configuration

Establish product support procedures, oversee L1/L2 teams and provide L3 support

Functional Skills:

Implement and engineer network security tools in an enterprise environment

Highly proactive, self-starter with strong work ethics, high level of professionalism

Take ownership of deliverables, troubleshoot and resolve issues

Exceptional level of communication and leadership skills

Ability to work under pressure with tight deadlines, maintaining attention to detail

Produce high quality documentation (HLD/LLD/KOP)

Technical Skills:

Honeypots, deception technologies (Attivo experience prioritized)

In-depth knowledge of network and endpoint deception challenges, technologies and tools

Endpoint security agent packaging, testing, deployment and support

Network Security tooling implementation & operational support (L3)

Strong understanding of networking and architecture principles, cyber threats / attacks

ITIL process awareness and knowledge of CMDB, change & incident management

Additional Experience: Windows, Unix, Splunk, Coding