DomainTools is looking for a motivated and experienced Senior Information Security Engineer to join our Security Operations Team. We are a company with a vision of a safe, secure, and open Internet for everyone, and we are looking for a candidate who wants to contribute to that vision.
This position is part of a small team of highly motivated individuals who all wear multiple hats, and it reports directly to the Chief Information Security Officer / Vice President of Information Technology.
As part of the larger CISO Team, you will be able to use your experience to help influence specific technology decisions, and contribute to the implementation of the CISO’s vision for a world class Information Security Program.
The main focus areas for this position will be Security Information and Event Management and Reporting, as well as Intrusion Detection and Intrusion Prevention.
Location: Remote within the United States
Compensation: $140,000- $160,000 base salary
Make recommendations and oversee the implementation of next generation Security Information and Event Management (SIEM) and Intrusion Detection and Intrusion Prevention (IDS/IPS) solutions, including security design review, technical data gathering, security and policy review and configuration, security device implementation planning
Proven experience in integrating security tools such as AV, AAA, Firewall, Data Loss Prevention, IDS/IPS into an overall Security Event Management solution
Experience with connecting cloud deployments to SIEM systems
Select and tune appropriate rulesets, maintain, monitor, and troubleshoot IDS/IDP solution and collaborate with Technical Operations team on physical/logical placement and alert tuning
Participate in technical troubleshooting efforts for complex network environments to identify and eliminate network or security configuration issues for SIEM data collection
Understanding of network and endpoint security tools and how they integrate into the SIEM and provide a cohesive view of network incidents and security
Assist with penetration tests, vulnerability scanning, and cyber risk assessments
Analyze Proof-of-Concept exploits to detect threats and identify security weaknesses
Assist with compliance to security standards and conduct testing of security controls to identify and close gaps.
Experience in Threat and Vulnerability Management
Demonstrated understanding of information security and networking
Provide occasional off-hours support for planned maintenance work and unplanned support issues.
Build and maintain operational documentation for new and existing systems
10+ years experience in operational security engineering
Hands-on experience with implementing Splunk (onPrem or Cloud), Rapid7, AlienVault , LogRhythm, ArcSight, QRadar, or comparable enterprise SIEM solutions
Hands-on experience with implementing Snort, Suricata, Bro (Zeek), OSSEC, or comparable open source IDS/IPS solutions
Commitment to continuous improvement for the team
Strong communication skills and ability to work independently
DomainTools is the global leader for internet intelligence and the first place security practitioners go when they need to know. The world’s most advanced security teams use our solutions to identify external risks, investigate threats, and proactively protect their organizations in a constantly evolving threat landscape. DomainTools constantly monitors the Internet and brings together the most comprehensive and trusted domain, website and DNS data to provide immediate context and machine-learning driven risk analytics delivered in near real-time.
DomainTools offers a comprehensive benefits package to our employees that includes fully paid medical, dental and vision insurance premiums, a 401k retirement plan with company matching, basic life insurance, flexible PTO and additional well-being benefits.
DomainTools embraces diversity, equity, and inclusion to its fullest as an equal opportunity employer. We build our teams so creativity and innovation can flourish. We believe inclusivity and equity fosters innovation and growth; and we harness this mindset to drive a culture that serves our employees and our customers. We encourage people of all backgrounds, ages, perspectives, and skill sets to apply; and do not discriminate based on age, religion, color, national origin, gender, sexual orientation, gender identity, marital status, veteran status, disability, or any other characteristic protected by law.
You must sign in to apply for this position.
The activities will help you to apply remote jobs high efficiency, do onlne remote job interview and discuss remote job informations