Kansas Works Veterans Jobs

This job was posted by https://www.kansasworks.com : For more information, please see: https://www.kansasworks.com/jobs/12542502

At TreviPay, we believe loyalty begins at the payment. Thousands of sellers use our global B2B payments and invoicing network to provide choice and convenience to buyers, open new markets and automate accounts receivables. With integrations to top eCommerce and ERP solutions and flexible trade credit options, TreviPay brings 40 years of experience serving leaders in manufacturing, retail and transportation.

The Security Operations Engineer will serve as a threat detection and mitigation subject matter expert while working closely with members of the security and engineering teams.

\ The Security Operations Engineer will:

• Research, identify, and assess information security threats, alerts, anomalous activities, and vulnerabilities.
• Threat hunting to identify potentially malicious or anomalous activity to create proactive alerts
• Automate elements of security, detection, and remediation
• Identify, prioritize, and develop both automated and manual playbooks for threat response and indicators of compromise
• Undertake professional development and research the latest in security, detection, and automation techniques
• Demonstrate a commitment to teamwork and the maintenance of a collaborative work environment
• Gather, communicate, and manage issues and risks related to threat detection and response
• Build capabilities supporting the response to incidents, alerts, and threats
• Conduct investigations by analyzing logs and various other sources
• Maintain awareness of security threats, ensuring timely application of patches and upgrades as required
• Drive continuous improvement through measurement and monitoring
• Remain abreast of technological change as it relates to infrastructure, deployments, performance, monitoring, log aggregation, and alerting

\ Experience

• 5+ years experience with security operations, forensics, incident detection, and response
• Previous experience as a Security Operations or Incident Response Engineer is a must
• Developing, updating, and managing manual and automated response playbooks and processes
• Partnering with the red team to understand, analyze and perform a gap analysis of the attack chain
• Experience in malware analysis, threat intelligence, forensics, or penetration testing

Technical Expertise

• Strong to deep experience working with Microsoft O365/Defender products and solutions
• Deep understanding of TCP/IP and core application layer protocols
• Fluency with Windows, macOS, and Linux operation systems
• Cloud services like Amazon Web Services, Azure, or Google Cloud
• Container platforms, including Docker, Kubernetes, or Swarm
• Logging, SOAR, SIEM, IPS/IDS, EDR, and other common toolsets related to IR
• Automation via scripting and configuration management tools (Puppet, Chef, Salt, or similar)
• Knowledge of at least one scripting language (Python, Perl, Ruby, etc.)
• Git version control systems