IDS Support Engineer

Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.

• 4-8 years of relevant experience or equivalent combination of education and work experience
• Strong decision making skills and a team player, technical background in networking and security technologies
• University education, degree in Computer Science, Information Systems, or Networking and Security
• Practical knowledge of network and web attacks such as SQL injection, XSS, and other exploits
• Network troubleshooting skills
• Strong analytical capabilities problem solving skills, providing solutions in a systematic and clear manner, easily understood and followed by colleagues
• Excellent communication skills - written and verbal for both internal and external clients

Desirable Skills:

• Knowledge in the management of one or more IDS platforms
• Deep understanding of HTTP and Internet security technologies
• Demonstrated experience in fostering collaboration, innovation, creativity and teamwork
• Ability to drive key initiatives with minimal direction, multi-task and work well under pressure

• Experience and a strong skill set with IDS hardware and software platforms, such as Firepower (snort), Cisco, and TippingPoint, and McAfee
• Experience with endpoint security products such as Carbon Black Response and Carbon Black Defense, Crowdstrike, and RSA
• Experience with malware detection (sandboxing) products such as Lastline and FireEye
• Experience with leading Next-Generation Firewall platforms such as Check Point, ASA, FTD, Fortinet, and PAN are a plus
• Experience with Cloud services, including support for AWS, Azure, and Microsoft O365 is a plus
• Thorough understanding of the OSI and TCP/IPS models are required
• Strong knowledge of application layer security and architecture is desired
• Experience with Linux, UNIX, Windows operating systems
• Understanding of network services, exploits, vulnerabilities and attacks
• Strong networking expertise and understanding of routing principles and networking fundamentals, well known protocols, command line interfaces
• Understanding of regular expressions
• Solid Understanding of Packet Analysis Tools (TCP dump, Wireshark, Ngrep, etc.)
• Keen ability to diagnose and troubleshoot technical issues, excellent problem solving skills
• Scripting/programming skills a plus
• Experience using ticketing and CRM systems
• Excellent organizational and communication skills are required
• Excellent interpersonal and client service skills are required
• Dedication to customer service and passion for learning and security
• Strong attention to detail with the ability to take direction and execute on tasks assigned
• Work with 3rd party vendors in resolving escalated client issues
• Work with other teams in ensuring that assigned platforms meet compliance
• Work on special projects to ensure service delivery
• Participate in an on-call rotation to provide off-hours emergency support to the SOC teams
• Provide training to SOC analysts
• Continue education on industry standards including obtaining certifications