A 'hands-on' security infrastructure engineer who can do product evaluations in Cloud security (Encryption and Tokenization), Security Analytics and Forensics, Multi Variant Advanced Persistent Threat, SaaS, Proxy (forward, Reverse, Transparent and Web 2.0), SSL interception/MITM & Data leakage space. Setting up new security infrastructure in lab for functional and performance testing. Develop requirements/ gap analysis, product research in malware /day zero threat prevention , proxy, log analysis, Cloud SaaS.
•8+ years of overall networking experience with at least 5 years of hands on and familiarity of the following tools: Bluecoat Security Analytics and Forensics, Bluecoat Proxy SG, Fireeye wMPS/NX/VX, Radware Alteon, CID, AppXcel
•Skyhigh/CipherCloud/Cloud Saas tools OR similar cloud encrytion technology
•Expertise in analyzing malware and advanced persistence threats, malware lifecycle analysis and prevention technologies
•Expertise in Security Analytics and Forensics - ability to create custom parsers, queries, analyze and create custom meta data extractions on full packet capture solutions
•Cloud Encryption and Tokenization - Understand complexities of cloud encryptions, Salesforce topology and integration of Salesforce / Servicenow clouds with Cloud encryption gateway.
•Ability to deploy Web 2.0 proxies for advanced content filtering
•Day Zero Threat Prevention technologies with emphasis on machine learning
•Load balancing/ SSL offloading
•Implement virtualization / ESXi technologies
•Excellent understanding of TCP/IP and packet analysis
•Knowledgeable on DNS, DHCP, FireWalls, IPS, basic routing/switching
•Good communication skills, self- starter, desire for learning on a daily basis
•Ability to take ownership of project and be accountable for results
•Extremely organized, ability to multitask, ability to work on multiple projects with different deadlines
•'Big Picture Thinker', ability to strategize and contribute to the long term goals of the team.
•Scripting languages for automation-(Shell, Python etc)
•Expertise in concepts and implementation of Lucene elastic search, Yara Rules, Snort, Yum, PFring, Entropy DNS, Fastflux, Hadoop, MapR, Spark
•Advanced understanding of Machine learning, data modeling and perform advanced analytics using R / Python
•Scripting/automation of various security products with Rest API / Soap UI
•Hands on integration and testing with SEIM tools such as Arcsight, Splunk, Palantir, Cloudera platforms