1+ months

Cyber Threat Engineer - Global Threat Operations

Trustwave Holdings, LLC
Chicago, IL 60601
Apply Now
Apply on the Company Site
  • Job Code
    134171142

Trustwave Holdings, LLC

Trustwave is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.

Category: Security Services
Team: Managed Security Services
Location: Chicago, Illinois Greenwood Village, Colorado


Description

Position at Trustwave

Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. Offering a comprehensive portfolio of managed security services, consulting and professional services, and data protection technology, Trustwave helps businesses embrace digital transformation securely. Trustwave is a Singtel company and the global security arm of Singtel, Optus and NCS, with customers in 96 countries. For more information about Trustwave, visit https://www.trustwave.com.

This role will be responsible for coverage of an over-night shift.

A Cyber Threat Engineer is a member of the Global Threat Operations (GTO) team within Trustwave Managed Security Services (MSS). In addition to possessing technical knowledge, a Threat Engineer interacts extensively with customers and partners using polite professional etiquette, and serves as a technical point of escalation within GTO.

Cyber Threat Engineers perform the following duties:

  • Use strong TCP/IP networking skills to perform network analysis and understand detected threats.
  • Analyze escalated, complex cases involving a pattern of security events from firewalls, IDS, IPS, SIEM, Web Application Firewall (WAF), and other security data sources.
  • Resolve intractable technical problems within managed security solutions as part of a sustained improvement project.
  • Create, improve, and document processes for the management and monitoring of security solutions.
  • Tune devices for blocking and reporting based on customer business need.
  • Configure, manage, and upgrade Intrusion Detection Systems (IDS), Intrusion Protection Systems (IPS), and Security Information and Event Monitoring (SIEM) platforms.
  • Baseline threat detection devices for unique customer environments.
  • Test and improve signature-based and other detection methods.
  • Take responsibility for customer satisfaction and overall success of managed services.
  • Respond to needs and questions of customers in a polite, positive, and professional manner concerning their managed services, managed devices and detected threats.
  • Adhere to policies, procedures, and security best practices.
  • Resolve problems independently and understand the correct escalation procedures.
  • Perform rotating on-call duties (nights/weekend rotations).
  • Act as a mentor and escalation point for analysts within the Global Threat Operations team.


Skills & Knowledge Requirements:
Must have intermediate skills/knowledge in some of the following:

  • Security Information and Event Management (SIEM) management
  • Web Application Firewall (WAF) management
  • Unix / Linux and Windows system administration
  • Information security best practices & network security architecture
  • Sourcefire/Snort based security products
  • Current exploit and remediation techniques
  • Web Services Administration
  • TCP/IP networking
  • IP Tables/Packet filter firewalls
  • Vulnerability Scanning technologies
  • Log collection and analysis tools
  • Endpoint security concepts and products




PI134171142

Posted: 2021-04-15 Expires: 2021-05-17

Job Opportunities

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Cyber Threat Engineer - Global Threat Operations

Trustwave Holdings, LLC
Chicago, IL 60601

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast