Security Engineer II - SIEM Administrator
Company: Fannie Mae
Posted on: January 14, 2019
Security Engineer II - SIEM Administrator THE COMPANYFannie Mae provides reliable, large-scale access to affordable mortgage credit in communities across our nation. We are the leading source of funding for housing in America, which means more people can buy or rent a home. We are focused on sustaining the housing recovery, improving our company, and leading change to make housing better.Join our diverse, high-performing team and make a difference as we work together to enable access to a good home.For more information about Fannie Mae, visit JOB INFORMATIONDesign and implement systems and procedures to sustain the security, integrity, and availability of the organization's data. Assess risk of exposure of proprietary data through weaknesses in platforms, access procedures, and forms of access to the organization's systems and the data contained in them. Track security violations and identify trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security. May participate in simulated attacks or security violations to assess the organization's data security measures.KEY JOB FUNCTIONS Conduct platform or operating system vulnerability scans that assess exposure of system to attacks or hacking. Monitor Security Operations pager and respond to issues of potential viral activity, spam, phishing, etc. Administer controls and review their application to ensure that system's controls, policies, and procedures are operating effectively relative to the predicted effectiveness of the controls. Investigate events or incidents of apparent security breaches and report to appropriate authorities using corporate procedures. Confer and collaborate with internal and external auditors to ensure that appropriate controls are installed, operating properly, and being monitored and reported. May plan and/or conduct tests of the core infrastructure and the contingency environment for critical business applications to ensure business continuity in the event of a computer security incident. Aggregate metrics of operation of security controls, as well as apparent attacks, breaches, and other pertinent data; track trends and prepare for periodic security reports. Participate in projects designed to test defenses against hacking, denial of service, spam, break-ins, or similar attacks. May provide guidance to infrastructure or application staff participating in exercise. Examine and/or test new methodologies or tools that could be adopted to enhance security of platforms, infrastructure, or access to data. EDUCATION Bachelor's Degree or equivalent requiredApplicable certifications are desired MINIMUM EXPERIENCE 4+ years of related experience SPECIALIZED KNOWLEDGE & SKILLS 4+ years of experience as system or network administrator or a support specialist in a SOC environment. Solid understanding of basic fundamentals in TCP/IP and the OSI model as well as common routing protocols. Scripting is a plus. Experience working with firewalls and IDS technologies is required. Focus is on SIEM tools ( ArcSight/Splunk)Problem solving skills complimented with experience in solving information security device and application issues with customers is a must.SOC/NOC experience desired. Good verbal and written communication skills as well as attention to detail.Must have advanced experience in basic deployments with firewall, IDS, mailing and/or WAF technologies.Demonstrated mentoring and leadership capabilities and technical project planning from onboarding to implementation to execution phases.Exceptional customer service skills and interpersonal skills. Ability to work in small teams. Must be able to work in an on-call rotation to support 24/7 supportMust be able to resolve highly complex and technical business problems.Proven project management skills required. Ability to train all levels of staff to create Tier 2/3 expertise.Must be a Subject Matter Expert of 2 or more of applicable Infosec SOC supported technologies.Understanding of threat agents, attack vectors, and attack patterns as well as compensating controls and design patterns needed to mitigate risk Recommended Certifications Splunk: Splunk Core Certified User, Splunk Core Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, Splunk Enterprise Security Admin.ArcsightSecurity+Network+ / CENTCCNACEHSANS Certifications Relevant Experience OS / LINUX / WINDOWS / MACSIEM Tools (Arcsight/Splunk)Directory ServicesMicrosoft OfficeNetwork ProtocolsScripting Languages (Python/Bash/PowerShell)Multiple DB knowledge EMPLOYMENTAs a condition of employment with Fannie Mae, any successful job applicant will be required to successfully complete a background investigation.Fannie Mae is an Equal Opportunity Employer. Req ID: 55323
Keywords: Fannie Mae, Reston , Security Engineer II - SIEM Administrator, Engineering , Reston, Virginia
Didn't find what you're looking for? Search again!