Security engineer
Ericsson
Join our Team
management, network security, systems security, and monitoring systems / tools.Participate in planning and audit scope development as well as project execution as a critical team member
on complex technology related assessments.Play an active role in the design and execution of infrastructure initiatives to ensure an evolving adherence
to industry best practices for information security.Lead the execution of the assessment of specific technical areas of a project, supervising other team
members and providing coaching where needed.Perform Security Incident Management, including but not limited to: supporting SIEM tools, integrating logs
into the tool, creating and modifying rules, investigating and resolving alerts, automating tasks.Research new and emerging threats to gain insight into the evolving threat landscape, and share knowledge
with the team.Promote new ideas and new ways of executing projects and internal infrastructure enhancements.Innovate and automate repetitive activities and corrective actions, including broader automation initiatives.Analyzes and recommends security controls and procedures in business processes related to use of
information systems and assets, and monitors for complianceResponds to information security incidents, including investigation of countermeasures to and recovery
from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with
third-party incident responders, including law enforcement
(Nessus, Qualys, IBM AppScan, etc.) and PAM tools (BeyondTrust, CyberArk, etc.)Strong knowledge of both Linux-based and MS Windows-based system platforms with a strong technical
understanding and aptitude for analytical problem-solvingStrong understanding of enterprise, network, system and application level security issuesStrong understanding of enterprise computing environments, distributed applications, and a strong
understanding of TCP/IP networks along with available security controls (technical & process controls) for
respective layersGood understanding of the system hardening processes, tools, guidelines and benchmarksFundamental understanding of encryption technologiesParticipate in the out-of-hours on call rotation, providing technical support to the business for incidentsStrong knowledge sharing and collaboration skillsDeliver results and meet customer expectationsExcellent communication skills; English is a must
Minimum years of relevant experience:8 to 15 years experience with at least 8 years in IT and 7 years in Security ITIL certification, CCSP, OSCP, Security +, CISSP or similar will be an advantage Basic knowledge of telecommunications networks will be an added advantage
About this opportunity:
We are now looking for a Senior Security Engineer professional for our Managed Security team. This job role has accountability for researching, designing, engineering, implementing, and supporting security solutions in partnership with the respective stakeholders within Ericsson and / or customer organization and / or 3rd Party Providers. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured.
What you will do:
Design, implement, manage, monitor, and troubleshoot cybersecurity defenses, including configurationmanagement, network security, systems security, and monitoring systems / tools.Participate in planning and audit scope development as well as project execution as a critical team member
on complex technology related assessments.Play an active role in the design and execution of infrastructure initiatives to ensure an evolving adherence
to industry best practices for information security.Lead the execution of the assessment of specific technical areas of a project, supervising other team
members and providing coaching where needed.Perform Security Incident Management, including but not limited to: supporting SIEM tools, integrating logs
into the tool, creating and modifying rules, investigating and resolving alerts, automating tasks.Research new and emerging threats to gain insight into the evolving threat landscape, and share knowledge
with the team.Promote new ideas and new ways of executing projects and internal infrastructure enhancements.Innovate and automate repetitive activities and corrective actions, including broader automation initiatives.Analyzes and recommends security controls and procedures in business processes related to use of
information systems and assets, and monitors for complianceResponds to information security incidents, including investigation of countermeasures to and recovery
from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with
third-party incident responders, including law enforcement
The skills you bring:
Strong knowledge of information securityStrong knowledge of SIEM tools (such as McAfee ESM, QRadar, ArcSight, Splunk, etc.), scanning tools(Nessus, Qualys, IBM AppScan, etc.) and PAM tools (BeyondTrust, CyberArk, etc.)Strong knowledge of both Linux-based and MS Windows-based system platforms with a strong technical
understanding and aptitude for analytical problem-solvingStrong understanding of enterprise, network, system and application level security issuesStrong understanding of enterprise computing environments, distributed applications, and a strong
understanding of TCP/IP networks along with available security controls (technical & process controls) for
respective layersGood understanding of the system hardening processes, tools, guidelines and benchmarksFundamental understanding of encryption technologiesParticipate in the out-of-hours on call rotation, providing technical support to the business for incidentsStrong knowledge sharing and collaboration skillsDeliver results and meet customer expectationsExcellent communication skills; English is a must
Key Qualifications:
Education: BE/ B.Tech (Telecommunication/ Computer Science)Minimum years of relevant experience:8 to 15 years experience with at least 8 years in IT and 7 years in Security ITIL certification, CCSP, OSCP, Security +, CISSP or similar will be an advantage Basic knowledge of telecommunications networks will be an added advantage
Por favor confirme su dirección de correo electrónico: Send Email