Carbon Black Security Engineer at Comtec Consultants

Title: VMware Carbon Black Whitelist Security Engineer

Location: Hybrid(Texas or Arkansas, or Louisiana)

Duration: Long term or Full Time

We are looking for a VMware Carbon Black Whitelist Security Engineer who can provide hands-on technical engineering and take ownership of the growing cloud security program. The engineer manages threat detection, threat prevention, and incident response services using the Managed Security Service Providers (MSSP) and Incident Response (IR) services.

Key Responsibilities:

• Serves as the subject matter expert (SME) on Cloud Security for VMWare Carbon Black
• Own and develop the company’s security policies standards, and procedures as well as best practices documentation.
• Maintain a security mindset and propose and/or design technical solutions, which include creating prototypes and proof of concepts.
• Translate security and technical requirements into business requirements and communicate security risks to business leaders to engineers.
• Lead and influence multi-disciplinary teams in implementing and operating Cyber Security controls.
• Work closely with application developers and database administrators to deliver the business requirements.
• Provide Info security architecture & systems engineering consultancy to other IT and business teams.
• Automate security controls, data, and processes to provide better metrics and operational support.
• Identify and Implement new security technologies and best practices into VMWare's Cloud offerings.
• Stay current on emerging security threats, vulnerabilities, and controls evaluate new technologies against established requirements, and validate the security of the technology.
• Identify processes/procedures on how to handle a cloud security event, including forensic isolation and mitigation using Digital Forensics and Incident Response (DFIR/IR) teams.
• Identify new security threats by conducting continual monitoring, penetration testing, vulnerability assessments, and log analysis.
• Create technical and managerial level reports and risk assessments for Cloud-based applications and infrastructure.

Qualifications:

• Minimum of 5-7 years of IT Security and/or Cloud infrastructure, security architecture engineering experience.
• Computer Security experience with a proven focus on Cloud Security. A clear passion for cloud Security and Cloud technologies.
• Required to have experience with virtualization.
• Strong technical knowledge of Amazon Web Services and exposure to FedRAMP would be an advantage.
• Ability to demonstrate a clear understanding of current threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels.
• Ability to automate/script daily tasks through Python, Bash, or other tools.
• Strong experience with web-based applications and web services.
• Proficient in Linux system design, automation, and operations.
• Strong interpersonal, oral, and written communication skills.
• Knowledge of network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols).
• Hands-on knowledge in DLP, Deep Packet Inspection, Sandboxing, Email Security, Web Security, Office365/Outlook 365, Bit9/Carbon black
• Should have a clear understanding of the MITRE framework and how to operationalize the same across multiple functions of the Cyber Defense Centre.
• Experience in designing, documenting, and implementing standards, specifications, policies, and procedures.
• Demonstrated ability to take initiative and accountability for achieving results.
• Ability to translate complex security issues into understandable business language.
• Very detailed knowledge of system security vulnerabilities and remediation techniques
• Security certification e.g., CISSP, GIAC, CEH, etc. is preferred.
• Experience using Microsoft Visio would be good to have.