Back to all jobs
S
Principal Security Engineer (India)
System Two Security
WorldwideRemote1y ago
- Employment
- Full-time
- Seniority
- Staff
About the role
- Narrative Building: Integrate defensive tactics and controls with the threats and vulnerabilities into a single narrative.
- Emulation: Emulate the tools and techniques of attackers in the most realistic way possible.
- Threat Intelligence Research: Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Engage with peers and industry groups that share threat intelligence analytics. Conducting research to identify potential security threats
- Workflow Design: Develop efficient workflows for the threat hunting system.
- Accuracy Analysis: Assess and improve the accuracy of the S2S backend systems.
- Collaboration: Partner with the data science team to align efforts.
- Reporting: Communicate findings and insights effectively.
- Continuous Improvement: Seek ways to enhance cybersecurity practices within the product.
- Guidance: Provide guidance on industry standards and best practices to product managers and application developers.
- Design and execute testing and simulations: Penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies, tools, and frameworks
- Bachelor's degree in computer science, information technology, or a related field.
- 5+ years of work experience.
- Extensive experience in the field of cybersecurity.
- Experience in one or more technical roles in the areas of Security Operations, Threat Intelligence, Penetration Testing, Red Teaming, Purple Teaming, Threat Hunting or Incident Response.
- Experience with Threat Research and detection engineering.
- Experience in validation systems to reduce False Positives.
- Experience querying log sources within large centralized logging platforms, e.g. Splunk, Elastic, Cloudera, SQL.
- Functional understanding of how threat actors gain access, move laterally, privilege escalate, set persistence, and evade defenses to achieve objectives.
- Ability to critically examine an organization’s systems through the perspective of a threat actor and articulate risk in a clear and precise manner.
- Excellent communication and teamwork skills.
- Ability to stay up-to-date with the latest security trends and technologies.
- Ability to manage and balance business and technical requirements.
- Highly organized with an ability to manage competing priorities.
- Hold relevant industry certifications showcasing advanced expertise in cybersecurity and offensive testing methodologies or resiliency such as:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Offensive Security Certified Professional (OSCP)
- SANS Purple Team Certified
- Master's degree in cybersecurity or a related field.
- Experience developing AI.
- Strong leadership and project management skills.
- Experience building security technology roadmaps and transitioning in new technologies.
- Understand system and network telemetry generated by SOC tools.
- Experience in other technical areas: Security Products and Services, Security, Data and IP Services, Network Operations, and Cloud and Data Center Outsourcing.
- Experience with large scale data analysis.
- Working knowledge of MITRE ATT&CK framework.
764,000+ hidden jobs like this
System Two Security and thousands of companies post here first — often days before LinkedIn or Indeed. Your first 5 applications are free; go Pro to apply without limits.
Everything Pro unlocks:
- Unlimited applications — free stops at 5
- Track every application in one place
- Apply straight to the source, one click
- Save & organize roles you love
- Roles pulled from company boards before the big sites
