IDS Support Engineer

Employer: Secureworks
Domain:
  • IT Hardware
  • IT Software
  • Telecommunication
  • Job type: full-time
    Job level: 1 - 5 years of experience
    Location:
  • BUCHAREST
  • Updated at: 23.10.2018
    Short company description

    Dell Secureworks is a global leader in providing intelligence-driven information security solutions. We play an important role, as no organization in the world is immune from cyber attacks and the nature of the attack is changing every day.

    Requirements

    • 4-8 years of relevant experience or equivalent combination of education and work experience
    • Strong decision making skills and a team player, technical background in networking and security technologies
    • University education, degree in Computer Science, Information Systems, or Networking and Security
    • Practical knowledge of network and web attacks such as SQL injection, XSS, and other exploits
    • Network troubleshooting skills
    • Strong analytical capabilities problem solving skills, providing solutions in a systematic and clear manner, easily understood and followed by colleagues
    • Excellent communication skills - written and verbal for both internal and external clients

    Desirable Skills:

    • Knowledge in the management of one or more IDS platforms
    • Deep understanding of HTTP and Internet security technologies
    • Demonstrated experience in fostering collaboration, innovation, creativity and teamwork
    • Ability to drive key initiatives with minimal direction, multi-task and work well under pressure

    Responsibilities

    • Experience and a strong skill set with IDS hardware and software platforms, such as Firepower (snort), Cisco, and TippingPoint, and McAfee
    • Experience with endpoint security products such as Carbon Black Response and Carbon Black Defense, Crowdstrike, and RSA
    • Experience with malware detection (sandboxing) products such as Lastline and FireEye
    • Experience with leading Next-Generation Firewall platforms such as Check Point, ASA, FTD, Fortinet, and PAN are a plus
    • Experience with Cloud services, including support for AWS, Azure, and Microsoft O365 is a plus
    • Thorough understanding of the OSI and TCP/IPS models are required
    • Strong knowledge of application layer security and architecture is desired
    • Experience with Linux, UNIX, Windows operating systems
    • Understanding of network services, exploits, vulnerabilities and attacks
    • Strong networking expertise and understanding of routing principles and networking fundamentals, well known protocols, command line interfaces
    • Understanding of regular expressions
    • Solid Understanding of Packet Analysis Tools (TCP dump, Wireshark, Ngrep, etc.)
    • Keen ability to diagnose and troubleshoot technical issues, excellent problem solving skills
    • Scripting/programming skills a plus
    • Experience using ticketing and CRM systems
    • Excellent organizational and communication skills are required
    • Excellent interpersonal and client service skills are required
    • Dedication to customer service and passion for learning and security
    • Strong attention to detail with the ability to take direction and execute on tasks assigned
    • Work with 3rd party vendors in resolving escalated client issues
    • Work with other teams in ensuring that assigned platforms meet compliance
    • Work on special projects to ensure service delivery
    • Participate in an on-call rotation to provide off-hours emergency support to the SOC teams
    • Provide training to SOC analysts
    • Continue education on industry standards including obtaining certifications