Summary:
Join Hantz Group, a leading financial services firm based in Michigan, as a Security Operations Engineer. In this pivotal role, you'll be the steward of our digital realm, ensuring the security and resilience of our infrastructure. You'll take charge of our cybersecurity tools and platforms, spearhead vulnerability management initiatives, and champion leading industry practices to fortify our network. Your expertise in cybersecurity and knowledge of industry trends will be instrumental in securing our clients' financial futures.
Responsibilities:
Manage and optimize cybersecurity tools and platforms, ensuring vigilant monitoring of security logs and alerts. Address tickets from our Managed Detection and Response (MDR) provider to verify, analyze and begin mitigation activities of potential security incidents as they arise. Assist with vulnerability assessments and penetration testing, analyzing, and addressing findings to reduce threat exposure and manage risk across the enterprise. Collaborate with internal IT teams and external partners to assist in the deployment, configuration, and maintenance of critical security infrastructure, including firewalls, IDS/IPS, endpoint protection, anti-phishing tools, and vulnerability management platforms. Assist with the development and maintenance of comprehensive IT and security documentation, such as policies, procedures, and incident response plans. Provide feedback on security control capability gaps based on observations within the environment to strengthen overall security posture. Assist with the development, coordination, and deployment of staff security training, including anti-phishing and social engineering awareness. Preferred Skills:
Working knowledge of security frameworks and standards such as ISO27001, PCI DSS, NIST 800-53, and other regulatory/compliance frameworks such as FINRA, etc. Ability to excel both independently and as a collaborative team member. Proficiency with vulnerability assessment tools, such as Rapid7's InsightVM. A strong research capability with a proven track record of verifying results. Requirements:
A bachelor's degree in IT, Computer Science, Cybersecurity, or a related field. 2-3 years of experience in a cybersecurity role, such as: cyber threat intelligence, vulnerability management, security engineering, incident response, or offensive security. Familiarity with security technologies and products, including firewalls, IDS/IPS, SIEM, DLP, and XDR/MDR. Fundamental understanding of leading practices in security technology operations and solution deployment. Preferred certifications include CISSP, CISM, CISA, GIAC (i.e., GCIH, GSEC, GCFA), OSCP, or other equivalent professional certification. Compensation:
$90,000 - $120,000 annually (Compensation at the higher end of the range is contingent upon certifications such as CISSP and a bachelor's degree.)
