Cradlepoint is looking for a seasoned Security Engineer professional for our Managed Security team. This job role holds significant accountability for researching, designing, engineering, implementing, and supporting comprehensive security solutions in partnership with various stakeholders within Cradlepoint, customer organizations, and third-party providers. You will be instrumental in ensuring the resilience and integrity of our information assets.
What You Will Do: Key Responsibilities
- Design, implement, manage, monitor, and troubleshoot cybersecurity defenses, including configuration management, network security, systems security, and security monitoring systems/tools.
- Participate in planning and audit scope development, and execute projects as a critical team member on complex technology-related assessments.
- Play an active role in the design and execution of infrastructure initiatives to ensure evolving adherence to industry best practices for information security.
- Lead the execution of technical area assessments for projects, supervising other team members and providing coaching where needed.
- Perform Security Incident Management, including, but not limited to: supporting SIEM tools, integrating logs into the tool, creating and modifying rules, investigating and resolving alerts, and automating tasks.
- Research new and emerging threats to gain insight into the evolving threat landscape, and proactively share knowledge with the team.
- Promote new ideas and innovative ways of executing projects and internal infrastructure enhancements.
- Innovate and automate repetitive activities and corrective actions, contributing to broader automation initiatives within security operations.
- Analyze and recommend security controls and procedures in business processes related to the use of information systems and assets, and monitor for compliance.
- Respond to information security incidents, including investigation of countermeasures to and recovery from computer-based attacks, unauthorized access, and policy breaches; interact and coordinate with third-party incident responders, including law enforcement.
- Participate in the out-of-hours on-call rotation, providing essential technical support to the business for security incidents.
Required Qualifications
- Education: BE/B.Tech (Telecommunication/Computer Science).
- Strong knowledge of information security principles, frameworks, and best practices.
- Strong knowledge of SIEM tools (such as McAfee ESM, QRadar, ArcSight, Splunk, etc.), scanning tools (Nessus, Qualys, IBM AppScan, etc.), and PAM tools (BeyondTrust, CyberArk, etc.).
- Strong knowledge of both Linux-based and MS Windows-based system platforms, coupled with a strong technical understanding and aptitude for analytical problem-solving.
- Strong understanding of enterprise, network, system, and application-level security issues.
- Strong understanding of enterprise computing environments, distributed applications, and TCP/IP networks, along with available security controls (technical & process controls) for respective layers.
- Good understanding of system hardening processes, tools, guidelines, and benchmarks.
- Fundamental understanding of encryption technologies.
- Strong knowledge-sharing and collaboration skills.
- Excellent communication skills; English proficiency is a must.
- Ability to deliver results and meet customer expectations.
Certifications (Advantageous)
- ITIL certification, CCSP, OSCP, Security +, CISSP, or similar will be an advantage.
- Basic knowledge of telecommunications networks will be an added advantage.
