CyberSecurity Engineer - Guadalajara, México - Avertium

Descripción

Avertium is the and consulting provider that companies turn to when they want more than check-the-box cybersecurity. In today's threat landscape, your not-so-standard processes, workflows, and vulnerabilities require more than just a standard approach to cybersecurity. You need a smarter, stronger approach based on more rigor, more relevance, and more responsiveness. That is why more than 1,200 organizations in every sector from manufacturing to financial services, healthcare to technology and business services to hospitality rely on Avertium for . We are looking for a Cyber Security Engineer to join our Managed Security Services Team. In this role, you will focus on providing excellent customer experiences centered on great technical support to our managed service customers worldwide. You will help our customers along their security journey through research, diagnoses, troubleshooting, and resolution of security tool related issues in an accurate and timely manner. You will be responsible for working with different systems, software, and hardware including Microsoft XDR, Sentinel, SentinelOne and cloud environments in Azure and AWS.

Responsibilities:

Provide technical guidance / recommendations to clients to enhance their overall security posture within the managed products. Handles daily proactive maintenance and reactive troubleshooting/repair functions.

Proactively monitor technical issues pertaining to the services provided for the client and make recommendations to reduce the risk/impact of similar future problems. Monitors health of security systems.

Utilize SIEM and other tools to assist in network investigations, including firewalls, IDS/IPS and network and system monitoring toolsets.

Perform post mortem analysis on logs, traffic flows, and other activities to identify malicious activity.

Research, develop, and stay current on testing tools, techniques, and process improvements in support of security tools and incident response.

Proactively work with clients in the management of technical issues as well as planning, implementation, skills and knowledge transfer on services provided.

Qualifications for Success:

3+ years experience in an Engineering or similar role in Cyber Security.

Experience with security tool application, server, and networking support.

Experience troubleshooting performance and application-based issues on Windows and Linux environments.

Some automation or scripting experience with Regex and PowerShell.

Experience with Kusto Query Language (KQL).

Experience with Prometheus and Grafana.

Microsoft Certifications (AZ500,MS500, SC200, SC100) preferred.

Exposure to MITRE and familiar with TTPs(Tactics Techniques and Procedures).

Ability to create internal documentation including architectural diagrams.

Familiarity with cloud administration best practices and principles in AWS and(or) Azure.

In-depth understanding of networking concepts and technologies.

Experience using enterprise ticketing systems such as ServiceNow.

Excellent problem solving and communication skills.

Ability to provide step by step technical help via phone, remote session, and email.

#LI-CS1