Senior Information Security Engineer
The Platform and Security Services Organization is seeking a well-rounded Security Engineer to raise the security bar and support Intel's big bet platforms. This role requires a mix of strategic engineering and design, along with hands-on technical work and problem-solving skills, passion for quality, security, automation, and skills to understand complex systems with a desire for continual improvement and innovation. In this role you will actively configure, manage, and integrate applications and platforms to support Intel's vulnerability management services and programs. An understanding and hands-on experience with various server/system architectures, operating systems, system patching, and vulnerability scanning, system and security configuration, auditing, and automation is required. You will use various security tools to identify, classify and track remediation of vulnerabilities in our environment driving prioritization, escalation, and remediation of vulnerabilities You will need to have a strong attention to detail, data accuracy and analysis with the ability to assess and communicate risk within a business context. Self-motivated and operates with a high sense of urgency and a high level of integrity. Passion for security and a drive for continuous learning.
As a Security Engineer your responsibilities will be, but not limited to:
Configuration, management, and operations of core applications within the Platform and Security Services organization (e.g., ServiceNow, Tenable, BigFix, Splunk, etc)
Conduct vulnerability scans at all levels on both internal and external systems within the enterprise.
Perform assessment of vulnerabilities identified through scans by evaluating/performing risk assessments, prioritizing vulnerabilities discovered and drive remediation campaigns/enforcement working with various teams.
Provide vulnerability remediation/patching support to asset owners and work with asset owners on the closure of the vulnerability per the fix directions.
Maintain knowledge of the threat landscape, provide vulnerability assessment/analysis, and produce reports for management.
Collaborate and interact in a dynamic environment with multiple global teams to solve security problems.
Document policies, standards and processes related to Vulnerability Management, and keeps them current.
Review and assist in identifying owners of assets that are unregistered/unclassified ensuring good data quality.
Improve existing process and solutions through automation, upgrades, and integration with various systems, tools, data sources for applications within the organization.
Troubleshoot complex issues across domains, networks, databases, operating systems, ETL, applications, reporting.
Support an Agile and DevOps approach to platform management and maintenance, including support for deployment and management automation, version controls, and related continuous integration, delivery, and management processes.
Work closely with software development engineers, systems engineers, network engineers, database administrators, monitoring team, and information security teams in supporting new features, services, and releases.
Proactively discover security problems before users notice; achieve optimal application performance, stability, and availability; determine optimal configurations for application software and application servers; scale infrastructure to meet demand.
You must possess the below minimum qualifications to be initially considered for this position. Qualifications listed as preferred or additional will be considered a plus factor for applicants.
Bachelor's Degree in Computer Engineering, Computer Science, Information Security, or any other science/engineering related field.
5+ years of experience supporting Information Technology operations and service delivery.
3+ years of hands-on information security experience.
2+ years of Enterprise Systems Engineering experience with administering Windows and Linux systems.
Master's degree in Computer Engineering, Computer Science, Information Security, or any other science/engineering related field.
3+ years of experience working in an Agile environment and or Scrum practices.
3+ years of experience in any of the following: Vulnerability Management including Vulnerability Assessment, Identification and Remediation and/or Asset Management lifecycle and processes.
3+ years of software development/scripting experience using multiple modern languages (Python, C#, Java. Perl, Splunk SPL, BASH).
2+ years of experience in the following areas: Writing simple to moderately complex scripts and programs for automation, tools, frameworks, dashboards // Developing scripting and automation solutions to support system configuration, performance, and troubleshooting // Implementing and supporting cloud-based solutions // Experience with network protocols (TCP/IP) as well as protocols associated with common device communications // Experience with information security best practices and technologies.
Technical and Service Management certifications are an advantage, for example: ITIL, ServiceNow (CSA/CAD), AWS, MCSE, GSEC/CISSP, CCNA.
CIS security controls and Defense in Depth theory.
Experience in database administration and/or database operational functions commonly used in the supporting of applications and queries.