Senior Network Security Defense Engineer

About The Position

Requirements

• Bachelor’s degree or four or more years of work experience.
• Four or more years of relevant experience required, demonstrated through work experience and/or military experience.
• Fluency in Linux or Unix command line
• Strong OSI model and networking, especially TCP/IP and HTTPS
• RHEL or other Linux hardening experience
• Expertise with Splunk SPL or similar SIEM query languages to perform detection engineering, threat hunting, and data analysis.
• Experience with Risk-Based Alerting: managing notable events, asset/identity correlation, and defining/tuning correlation searches.
• Experience with IAM solutions (e.g. LDAP, SAML, OIDC) and encryption (e.g., IPsec, TLS)

Nice To Haves

• A degree in engineering or computer science.
• CyberSecurity certification(s) (CISSP, etc)
• Experience with security risk procedures, security patterns, authentication technologies and security attack pathologies.
• Experience with security and incident response frameworks such as NIST and MITRE
• Linux Incident response and/or basic forensics
• Private (OpenStack, Kubernetes, etc) or public (AWS, etc) cloud experience
• Scripting and automation skills (Python, Ansible, etc)
• Experience applying AI/ML or statistical analysis techniques to large security datasets.
• IMS, SIP, 5GC, SIM card activation or other wireless telecom knowledge
• Basic project management and organizational skills
• Strong verbal and written communication skills

Responsibilities

• Evaluating network function architecture to identify security risks.
• Designing solutions to mitigate risk and close security gaps and reduce vulnerability.
• Supporting configuration analysis and providing detailed guidance for implementing security controls on virtual and containerized network functions.
• Implement controls for the Security Fundamentals of Access Management, Situational Awareness, Configuration Hardening, and Vulnerability Mitigation
• Ensure that the security controls planned for the networks are operating effectively and meeting baseline standards.
• Perform detection engineering and threat hunting using Splunk, CrowdStrike, and other SIEM/security tools to do lookups, investigate threats, and design proactive alerts.
• Lead network security incident response activities, including triage, containment, eradication, and recovery for disruptive threats.
• Build and refine formal incident playbooks and response runbooks, ensuring repeatable workflows for high-impact scenarios.
• Execute root cause analysis and produce clear incident reports outlining the timeline, impact, evidence, and remediation recommendations
• Focus on specific network functions including IoT, SIM-OTA, CALEA, Wireless Messaging (SMS+MMS), Femto, Roaming, and Location Services.

Benefits

• medical
• dental
• vision
• short and long term disability
• basic life insurance
• supplemental life insurance
• AD&D insurance
• identity theft protection
• pet insurance
• group home & auto insurance
• matched 401(k) savings plan
• up to 8 company paid holidays per year
• up to 6 personal days per year
• paid parental leave
• adoption assistance
• tuition assistance
• overtime
• shift differential
• holiday pay
• allowances
• up to 15 days of vacation per year