Company name
Humana Inc.
Location
Louisville, KY, United States
Employment Type
Full-Time
Industry
It
Posted on
Feb 04, 2021
Profile
Description
The CyberSecurity Operations Center Engineer 2 develops and executes security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems. The CyberSecurity Operations Center Engineer 2 work assignments are varied and frequently require interpretation and independent determination of the appropriate courses of action.
Responsibilities
The CyberSecurity Operations Center Engineer 2 maintains hardware, software and network firewalls, intrusion detection systems, anti-virus software, vulnerability scanning systems and encryption protocols. Administers security policies to control physical and virtual access to systems. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information and systems. Evaluates information security configurations when intrusions have occurred and monitors the effectiveness of implemented changes. Responsible for resolution of high level incident response to network attacks. Focus is on developing, testing, debugging and deploying code or processing routines that support security protocols for an established system or systems. Focused on ensuring products (including websites) and hosted networks are designed and developed to be cyber-safe and compliant. Understands department, segment, and organizational strategy and operating objectives, including their linkages to related areas. Makes decisions regarding own work methods, occasionally in ambiguous situations, and requires minimal direction and receives guidance where needed. Follows established guidelines/procedures.
Required Qualifications
Bachelor's Degree
2 years of incident analysis, security architecture, malware research, SOC, or any other similar incident response experience.
Fundamental understanding of security tools such as SIEM, IDS/IPS, web proxies, DLP, CASB, SIEM, DNS security, DDoS protection, and firewalls
Fundamental understanding of cloud security and responding to cloud alerts/events
Knowledge of NIST and MITRE ATT&CK security frameworks
Knowledge of Microsoft Windows systems including active directory and Unix systems
Experience analyzing and inspecting log files, network packets, and any other security tool information output from multiple system types
Familiar with basic reverse engineering principles and understand of malware, rootkits, TCP/UDP packets, network protocols
Team-oriented and skilled in working within a collaborative environment
Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment
Required flexibility to work nights, weekends, and/or holiday shifts in the event of an incident response emergency
Experience with technical analysis of email headers, links, and attachments to determine if an email is malicious, and then executing remediation techniques to protect the environment
Preferred Qualifications
One or more of the following certifications are recommended: CompTIA Security ; CompTIA Network ; Information systems Security Professional (CISSP); SANS-GIAC certification (Security Essentials/GCIH, GCED, GCIA, GNFA); EC-Council (CEH)
Solid written and communication skills with the ability to present ideas in business-friendly and user-friendly language
Proven problem-solving abilities
Willingness to acquire in-depth knowledge of network and host security technologies and products (such as endpoint, network, email security) and continuously improve these skills
Ability to clearly and concisely document and explain technical details (e.g. experience documenting incidents, technical writing, etc.)
Collaborate with peers and multiple teams to identify improvements and identify areas for tuning use cases or signatures to enhance monitoring value
Participate in technical meetings and working groups to address issues related to malware, threats, vulnerabilities, and cybersecurity preparedness
Scheduled Weekly Hours
40
Company info
Humana Inc.
Website : http://www.humana.com