Senior Security Engineer

Location: Remote (US)

US Citizenship Required

SUMMARY:
The Senior Security Engineer has strong experience in SIEM platforms and common marketplace security tools to help identified and reduce threats in an environment. They will perform complex Splunk or Sentinel deployments in customer environments, design activities in using various security tools, technologies and frameworks, and support customers in strategic development of their overall data collection and security tooling. 
RESPONSIBILITIES:

• Work on complex SIEM project implementations for various customers in different parts of the world (remotely), starting with architecture design, deployment, and use case development. 
• Coordinate evidence/data gathering and documentation from a wide array of tools and collection methods. 
• Create and develop new SIEM use cases as per the customer requirements.
• Define and assist in creation of operational and executive security reports and dashboards.
• Participate in R&D activities across different parts of the organization.
• Work on internal integration activities as needed.
• Maintain familiarity with cybersecurity market trends and capabilities.
• Be the customer’s key technical contact.
• Responsible in managing delivery teams during toolset rollout in customer environment.
• Supporting BlueVoyant Sales team as a pre-sales engineer for complex/enterprise opportunities.
• Advise pre-sales engineering staff on scoping tasks and level of effort for completion. 
• Interact with BlueVoyant Day-2 team and responsible for transitioning customer managed infrastructure into BlueVoyant SOC environment.
• Deliver to customers security workshops.
• Conduct task driven requests from customers based on a defined ITSM. 

QUALIFICATIONS:

• At least 6 years of technical experience in cybersecurity field
• Deep expertise with Splunk or Sentinel SIEM platform
• Deep expertise in at least one leading cloud provider (Azure, AWS, or GCP). 
• Proven experience with Cloud technologies and security solutions
• Ability to mentor and train junior personnel on Cloud, Networking, and Endpoint technologies. 
• Development and design experience in automation services. 
• Hands-on experience in script development.
• Familiarity with product licensing models. 
• Advanced knowledge and expertise of using SIEM technologies for event investigation. 
• Knowledge of SIEM query development for security use cases. 
• Demonstrated experience in data visualization creation for decision making. 
• Customer facing – excellent communication skills.
• Deployment experience in large/complex environments
• Experience with multiple query languages such as KQL, SPL, SQL, etc.…
• Advanced experience configuring endpoint detection technology such as Defender, Crowdstrike, SentinelOne. 
• Hold Microsoft or Splunk certifications.
• Any security certifications, such as CISSP, CISM, CEH, SABSA
• Proficient in English 

About BlueVoyant

At BlueVoyant, we recognize that effective cyber security requires active prevention and defense across both your organization and supply chain. Our proprietary data, analytics, and technology, coupled with deep expertise, works as a force multiplier to secure your full ecosystem. Accuracy! Actionability! Timeliness! Scalability!

Led by CEO, Jim Rosenthal, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts. BlueVoyant services utilize large real-time datasets with industry leading analytics and technologies.

Founded in 2017 by Fortune 500 executives, including Executive Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America.

All employees must be authorized to work in the United States. BlueVoyant provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, BlueVoyant complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

Disclaimer: Please note that pursuant to contractual requirements and applicable law, in order for employees to perform work on some of the company’s federal contracts, U.S. citizenship is required. Accordingly, an employee’s ability to perform work on such contracts is contingent upon the company’s verification of the employee’s citizenship status. Furthermore, individuals may be subject to additional background checks and fingerprinting.

BlueVoyant Candidate Privacy Notice

To understand how we secure and manage your personal data upon submitting a job application, please see our Candidate Privacy Notice, which can be found here - Candidate Privacy Notice