Associate Security Engineer
Click the Facebook, Google+ or LinkedIn icons to share this job with your friends or contacts. Click the Twitter icon to tweet this job to your followers. Click the link button to view the URL of the job, which then can be copied and pasted into an e-mail or other document.
Lake Forest, IL 60045
Associate Security Engineer
At The Trustmark Companies we help people thrive. We provide products and personalized attention that engage and inspire people to maximize their health potential. We offer employee benefits customized to fit each unique business need or life circumstance. It all revolves around our belief that better health and greater financial security increase overall well-being. And with well-being comes peace of mind. Peace of mind to focus on work and family and everything else that’s important in life. Peace of mind to thrive.
Our IT team is looking for a Security Engineer. In this role you will perform analysis of log files including network, endpoint, and investigative analysis of attacks and malware and communicates to different business and IT leaders.
+ Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction by working within the Intrusion Detection Prevention Systems (IDPS), Security Information and Event Management (SIEM), and Endpoint Protection Platform (EPP) ; monitoring, analyzing, phishing and investigating security incidents with Security Team
+ Provide Incident Response activities for organization and coordinates with other IT teams and business units to record and report incidents. Support efforts to recognize intrusion attempts and perform thorough reviews and analyses of relevant event detail and summary information.
+ Assists with implementation of counter-measures or mitigating controls.
+ Coordinate with cross functional teams regarding intrusions and compromises to the network infrastructure, applications and operating systems and prepares incident reports of analysis results
+ Maintains current knowledge of relevant technology as assigned
+ Bachelor’s degree in computer engineering, computer security, computer science discipline, or relevant work experience required
+ 1+ years of information security related experience, in areas such as: operations, incident analysis, incident handling, and vulnerability management or testing, log analysis, intrusion detection/prevention, firewall administration, network operations, engineering, system administration on Linux, or Windows, Identity Access Management required
+ Understanding of basic computer science including: encryption, databases, operating systems, and networks required
+ Understanding of security operations concepts such as perimeter defense, BYOD management, data loss protection, insider threat, kill chain analysis, risk assessment and security metrics required
+ Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters required
+ Basic knowledge of open source and commercial security management tools preferred
+ Basic level of event analysis leveraging SIEM tools preferred
+ Basic incident investigation and response skill set preferred
+ Basic log parsing and analysis skill set preferred
+ Basic knowledge of networking fundamentals (TCP/IP, network layers, Ethernet) preferred
+ Basic knowledge of malware operation and Indicators of Compromise (IOC) preferred
+ Moderate knowledge of Windows and Unix or Linux preferred
+ Basic to Moderate knowledge or IDS/IPS systems preferred
+ Basic to Moderate knowledge of Firewall and Proxy technology preferred
+ Basic knowledge of penetration techniques preferred
+ Basic knowledge of Data Loss Prevention monitoring preferred
+ Basic experience with scripting preferred
+ Basic knowledge in National Institute of Standards and Technology (NIST) preferred
Desired Certifications (not required)
+ CompTIA Security+
+ Certified Ethical Hacker (CEH)
+ Cisco Certified Network Associate Security (CCNA Security)
+ Cisco Certified Network Associate (CCNA)
+ Server Platform Certifications (Microsoft, Linux)
Lake Forest, Illinois, United States
Business Unit for Reporting