Lead CyberSOC Engineer
Schlumberger
Full-time or part-time: Full-time
Job title: Lead CyberSOC Engineer
Job Location: 1430 Enclave Parkway, Houston, TX 77077
Job Description :
Serve as a champion and technical expert for a cyber domain, e.g. Threat intelligence. Understand threat actor TTPs and analyze or reverse engineer malware. Perform memory analysis. Use both internal and external threat intelligence to build threat detections and provide data enrichment. Conduct security gap analysis assessments, penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities. Maintain and employ a strong understanding of advanced threats, continuous vulnerability assessment, response and mitigation strategies used in cybersecurity operations. Provide mentoring to junior team members.
Minimum Education & Experience Requirements:
Must have a Bachelor's Degree, or foreign educational equivalent, in Computer Science, Cyber Security, Management Information Technology, or a related IT field. Must have 3 years of post-baccalaureate experience as an Analyst in Cyber Security or a Cyber Security related occupation. The 3 years of experience must include experience with Cyber Security focused on incident response; isolating and diagnosing potential threats and anomalous behavior; memory analysis using Volatility or Rekall tools; malware reverse engineering; forensic tools including Forensic Tool Kit (FTK), X-Ways, and SIFT as part of an investigation; internal and external threat intelligence to build threat detections and provide data enrichment; evaluating tools/solutions for investigation and Incident Response (IR); writing scripts, Automating Detections and Mitigation Controls; security gap analysis assessments including penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities; SOAR platforms and creating detections rules based of the TTPs of threat actors; On Premise and Cloud resources including Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS); and Threat Hunting.
Must have a Bachelor's Degree, or foreign educational equivalent, in Computer Science, Cyber Security, Management Information Technology, or a related IT field. Must have 3 years of post-baccalaureate experience as an Analyst in Cyber Security or a Cyber Security related occupation . The 3 years of experience must include experience with Cyber Security focused on incident response ; isolating and diagnosing potential threats and anomalous behavior; memory analysis using Volatility or Rekall tools ; malware reverse engineering; forensic tools including Forensic Tool Kit (FTK), X-Ways, and SIFT as part of an investigation ; internal and external threat intelligence to build threat detections and provide data enrichment ; evaluating tools/solutions for investigation and Incident Response (IR) ; writing scripts, Automating Detections and Mitigation Controls ; security gap analysis assessments including penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities ; SOAR platforms and creating detections rules based of the TTPs of threat actors ; On Premise and Cloud resources including Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS) ; and Threat Hunting .
Job title: Lead CyberSOC Engineer
Job Location: 1430 Enclave Parkway, Houston, TX 77077
Job Description :
Serve as a champion and technical expert for a cyber domain, e.g. Threat intelligence. Understand threat actor TTPs and analyze or reverse engineer malware. Perform memory analysis. Use both internal and external threat intelligence to build threat detections and provide data enrichment. Conduct security gap analysis assessments, penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities. Maintain and employ a strong understanding of advanced threats, continuous vulnerability assessment, response and mitigation strategies used in cybersecurity operations. Provide mentoring to junior team members.
Minimum Education & Experience Requirements:
Must have a Bachelor's Degree, or foreign educational equivalent, in Computer Science, Cyber Security, Management Information Technology, or a related IT field. Must have 3 years of post-baccalaureate experience as an Analyst in Cyber Security or a Cyber Security related occupation. The 3 years of experience must include experience with Cyber Security focused on incident response; isolating and diagnosing potential threats and anomalous behavior; memory analysis using Volatility or Rekall tools; malware reverse engineering; forensic tools including Forensic Tool Kit (FTK), X-Ways, and SIFT as part of an investigation; internal and external threat intelligence to build threat detections and provide data enrichment; evaluating tools/solutions for investigation and Incident Response (IR); writing scripts, Automating Detections and Mitigation Controls; security gap analysis assessments including penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities; SOAR platforms and creating detections rules based of the TTPs of threat actors; On Premise and Cloud resources including Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS); and Threat Hunting.
Must have a Bachelor's Degree, or foreign educational equivalent, in Computer Science, Cyber Security, Management Information Technology, or a related IT field. Must have 3 years of post-baccalaureate experience as an Analyst in Cyber Security or a Cyber Security related occupation . The 3 years of experience must include experience with Cyber Security focused on incident response ; isolating and diagnosing potential threats and anomalous behavior; memory analysis using Volatility or Rekall tools ; malware reverse engineering; forensic tools including Forensic Tool Kit (FTK), X-Ways, and SIFT as part of an investigation ; internal and external threat intelligence to build threat detections and provide data enrichment ; evaluating tools/solutions for investigation and Incident Response (IR) ; writing scripts, Automating Detections and Mitigation Controls ; security gap analysis assessments including penetration testing / red-team assessments, and vulnerability assessments to identify security vulnerabilities ; SOAR platforms and creating detections rules based of the TTPs of threat actors ; On Premise and Cloud resources including Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS) ; and Threat Hunting .
JOB SUMMARY
Lead CyberSOC EngineerSchlumberger
Houston
20 days ago
N/A
Full-time