Senior Cybersecurity Engineer - SOC

April 1

Apply Now

Receive Emails with Similar Jobs

ATSG

WebsiteLinkedInAll Job Openings

XTIUM Solutions is a comprehensive IT service provider that specializes in managed cloud services, including Desktop as a Service (DaaS), Infrastructure as a Service (IaaS), managed security, and network services. They serve as a strategic partner for mid-size and enterprise businesses, amplifying internal IT teams by providing AI-powered, secure, and scalable solutions. XTIUM focuses on optimizing technology stacks and ensuring operational stability while addressing the complexities of modern IT environments, especially in sectors like healthcare, finance, and education.

501 - 1000 employees

Founded 1994

🏢 Enterprise

💳 Fintech

📋 Description

• In this role you will be responsible for administration and monitoring of security tools, triaging security alerts, investigating incidents, and collaborating with other security professionals to ensure a secure environment. • To be successful, you will need a strong understanding of cybersecurity principles, incident response methodologies, and various security technologies. • To ensure 24x7x365 coverage, this role is part of a global follow-the-sun team and works on the Panama Schedule (2-2-3). • Job Responsibilities: Triage and analyze security alerts from our security tools to assess their severity, correlate events, and determine response actions • Investigate security incidents to determine root cause, scope, and impact by collecting evidence, conducting forensic analysis, and documenting the process • Conduct proactive threat hunting activities by analyzing network traffic, identifying suspicious patterns, and investigating potential indicators of compromise • Perform vulnerability assessments using Tenable/Nessus to scan systems, analyze vulnerabilities, and recommend mitigation strategies • Develop and maintain security documentation, including incident reports, playbooks, and procedures to ensure consistent response and improve security posture • Collaborate with network engineers and system administrators to implement network security controls, conduct system hardening, and improve the overall security posture of the infrastructure • Support and administer security tools and technologies, including CrowdStrike, Tenable/Nessus, Cisco security products, Microsoft Sentinel, and other relevant platforms

🎯 Requirements

• 5+ years of experience in a cybersecurity role, with a strong understanding of SOC operations, incident response, and security monitoring tools • Experience with MDR/MSSP services and technologies, providing insight into threat detection, incident analysis, and security monitoring best practices • Strong understanding of cybersecurity principles and incident response methodologies, including knowledge of security threats, vulnerabilities, and attack vectors • Hands-on experience with CrowdStrike administration and investigation, demonstrating proficiency in using its endpoint security platform for threat detection and incident response • Proficiency in Tenable/Nessus vulnerability management and scanning, including conducting vulnerability assessments and recommending remediation actions • Experience with alert triage and investigation, including log and network traffic analysis to identify and investigate potential threats • Excellent communication and collaboration skills, with the ability to convey security information to both technical and non-technical audiences and work effectively with other teams