Security Engineer
The SOC Security Engineer role will be responsible for taking the technical lead for on boarding for endpoint security services – particularly for the ongoing DCS (IPS/IDS and Application whitelisting) project(s) for a major account. This also includes BAU operational triage, and management of IPS/IDS and application management functions. This role also acts as a conduit between the engineering and analyst functions around tool maintenance and management and ensuring effective SIEM management for the analysts. The key activities this role is required to undertake are:
- Undertake key streams of SOC project work, in particular for Endpoint Security Services
- Provide technical assistance and mentoring to the SOC team members
- Technical ability to develop, manage and maintain IPS/IDS and application whitelisting policies
- Keep an oversight of activities connected to the prioritisation and response to cyber security events and incidents as required
- Be a point of escalation and provide 3rd level technical support where applicable
- Contribute to security research and threat analysis that will enable the team to build on their current knowledge, develop further skills, publish findings and build on awareness and information sharing
- Contribute to internal process and procedure improvements such as; reporting, event and incident handling procedures and response plans etc.
- Provides support to other team members after hours and participates in the after-hours on-call roster where needed.
We’re looking for enthusiasm and commitment, and a really strong desire to learn and develop, along with the communication (written and verbal) and interpersonal skills to enable you to work effectively in the team & customer environment as well.
In addition, we are looking for a combination of skills as below. You may not be guru level in all, but you’ll be keen to learn.
Experience in implementing and supporting any of the following streams:
- Security Information and Event Management tools (McAfee or RSA)
- Endpoint Security tools (McAfee, Sophos and Symantec including anti-virus, HIPS, DLP, Application Whitelisting and encryption)
- Vulnerability Scanning and Management Tools
- Demonstrated experience in an IT security and networking related environment, to include IT Analytical, Monitoring and Forensics skills
- Any exp or training in penetration testing, or knowledge of tools and techniques used
- Mobile Device Management tools from MobileIron and Good for Enterprise
- Ability to be self-managing
- Initiative and a pro-active approach
- An eye for detail
- Good communication skills, ability to communicate with internal and external clients.
The flexibility to be part of an on-call roster is essential, as is eligibility to pass NZ government security clearances.
We can offer an interesting stream of work and an opportunity to work in a successful and enthusiastic team of security professionals.
Ideally you will be able to pass government security checks, so you will need to be a resident or citizen of NZ or have lived here for a minimum of one year.
What can we offer?
- A real commitment to your career development and the opportunity to move internally as you develop
- A steady stream of interesting work, supporting diverse clients and technology
- A genuinely supportive and people-focused company culture
- A fun and friendly team environment
- Longevity and stability - we have been around for 50 + years; we’re still Kiwi owned and we’re still growing and going strong
- Stable and strong leadership and high-quality peers to learn from and work with
- Fresh Fruit provided daily and lunch provided once fortnightly
- Insurance benefits for you and your family as part of your salary package
- Competitive Salary
An ideal next step for your career, working within one of NZ’s major players.
Please apply online or send your CV to: [email protected]. If you want to talk to us about working for Datacom please call our recruitment team on +64 4 472 3386. All applications will be treated in the strictest confidence.