As part of the Security Services team, the Triage Engineer (TE) is a role that leverages your security expertise to identify, detect, and notify customers of security events ongoing within their environment.
Analyze incoming security events based on different data points; network, endpoint, and log sources expediently, consistently, and accurately Prioritize incoming events exceptionally well Willingness to run a security incident to completion; detect, work with team members, and communicate effectively with internal and external team parties throughout the process.
Steer complex investigations within your area of expertise, and leverage your security knowledge to engage the other experts within other disciplines appropriately Prioritize task work according to understood and implied priorities.
Required Skills and Experience:
8+ years Industry experience; Information Security, Network Security, or Cyber Security roles
5+ years additionally as a Network Admin, System Admin, Cloud Admin, or similar is strongly preferred Have deep technical competency in two (2) of the following Networking – common protocols, server/client infrastructure, routers, switches, WAPs, etc Perimeter – firewalls, IDS, IPS, UTM, WAF, Gateways, Proxys, Mail Servers, etc Authentication – AD, SSO, MFA, etc IaaS – cloud services, AWS, Azure, GCP End Point – MDM, EDR, EPP, AV SaaS – collaboration tools including O365, GSuite, Box, Salesforce, Workday, etc Experience in SOC .