W2 Position :: Linux Security Engineer / Lead at Columbia, SC (Onsite, 5 Days a Week)

Linux Security Engineer / Lead

12 + Months

Columbia, SC (Onsite, 5 Days a Week)

Necessary Expertise:
- Proficient in IT security technologies administration including Snort, SourceFire, and Firepower
- Manage deployment processes for custom Linux distributions including RockyLinux, CentOS, RedHat, and Oracle versions 8/7
- Keep servers secure with updated OS patches and kernel enhancements
- Expertise in managing Snort IDS including sensor administration, signature development, tuning, and open-source sensor configuration
- Strong ability with scripting for process automation, with a preference for Python and Ansible
- Maintain and enhance Linux-based security tools, manage troubleshooting for Linux Servers and applications beyond basic level
- Forge improvements in operational workflows
- Understand the fundamentals of network infrastructure including routers, switches, VLANs, and VPN setups
- Evaluate and fortify network sensing infrastructures
- Offer system deployment and design enhancements
- Administer and engineer SOC tools such as log collectors, EDRs
- Handle client expectations and partake in obligatory regulatory and review meetings for specific project delivery
- Physical endurance to handle hardware, including lifting and server installations in data centers

Desired Expertise:
- Mastery in Centralized Log Management
- Certification as Red Hat Certified System Administrator (RHCSA )
- CompTIA Security+ credential

Duties and Accountabilities:
- Assist with the highest level of customer support in doctrine and policy creation and execution
- Offer occasional security engineering and integration aid to in-house customers
- Generate thorough documentation to back technical endeavors such as materials for architecture review boards
- Tackle general security-related technical issues and offer essential engineering support to resolve them
- Architect, create, engineer, and execute security solutions meeting specific security demands, particularly for IDS/IPS technologies
- Roll out new network traffic monitoring sensors
- Ensure the functionality and security of all information systems
- Set up, tune, and support an array of tools and services
- Advise on the selection, processing, and dissemination frameworks within the cybersecurity space
- Implement and manage FireEye HX EDR agents across enterprise endpoints
- Harmonize FireEye HX integration with other security infrastructures, e.g., SIEM platforms
- Coordinate automated scanning tools for routine vulnerability checks within applications
- Perform DAST for real-time vulnerability detection in active applications