Other,Data Loss Prevention DLP,Security

Other,Data Loss Prevention DLP,Security,Change Management,Windows

PUNE

- What is the specific title of the position? Senior IT Security Engineer Work location (specify UHG/UHC/Optum location or remote/telecommute)? Telecommute Work hours (ex. 9am-5pm day/night shifts rotating shifts etc)? Rotating shifts to ensure support for change management of supported platform. Hours will likely entail working from 3PM CT to midnight. Many change windows don't start until 22:15 CT. Flexibility is required since war room support hours can occur any hour of a 24-hour window and if paged to support, will need to join the bridge. Hours will adjust accordingly any day that this is needed. Please provide a summary of the project/initiative that this candidate will be working on? Contractors will be working with the SASE project initiative. Contractors will be required to help with developing the security tools full operational readiness scope. Provides support of Data Loss Prevention (DLP) or web traffic protection and experience with deployment of O365 security stack. Provides SME level support for establishing operational readiness for new cloud operations and support for ongoing DLP operations for UHG. Positions in this function are involved in monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and Web-based security. Conduct vulnerability assessments and monitor systems, network, databases and Web for potential system breaches. Respond to alerts from information security tools. Report, investigate, and resolve security incidents. Recommend and implement changes to enhance systems security and prevent unauthorized access. Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach. May oversee internal or external systems security (i.e., cloud services). Ensure that customers and users have the right access to the right systems at the right times. Please describe the team the candidate will be working with - how many members? The current team consists of 15 engineers who directly support the SASE security tools. There are a total of 28 total members within the team, which includes the leadership, architects, and engineers. What are the top 5-10 responsibilities for this position (please be detailed as to what the candidate is expected to do or complete on a daily basis)? Serves in an individual contributor capacity, formulating and implementing procedures and systems Serves as a senior Subject Matter Expert (SME) for approaches, procedures, and implementation of security systems Oversees the monitoring and responses to security incidents, offering expertise to ensure prompt and effective resolution Collaborates with director, managers, project managers, architects, and other technical leads to ensure continuity and communication across teams Collaborates with director, managers, and other technical personnel to ensure mitigation of risks to the company Mentors and coaches cyber security individuals to provide guidance and expertise, promoting continued integration of technological advances to further enhance security What does the ideal candidate background look like (ex: healthcare specific background specific industry experience etc.)? What skills/attributes are required (please be detailed as to number of years of experience for each skill)? What skills/attributes are preferred (what will set a candidate apart)? Extensive experience providing SME level support in large, highly dynamic enterprise environments Leads troubleshooting efforts in complex issues involving multiple platforms and network flows Operates well under pressure and urgent circumstances Self-reliant and diligent in follow-through for assigned tasks Pro-active and effective in cross-team collaboration Ability to work with a geographically disperse team Moderate technical experience on one or more of the following security platforms: DLP SASE (CASB/SWG/VPN) Azure Extensive knowledge of networking concepts, software defined networking principles, or cloud networking Demonstrated effective communication skills Ability to write for technical and non-technical audiences, across a variety of platforms including email, chat, Standard Operation Procedures, and knowledgebase articles Ability to verbally communicate to wide array of audiences including non-technical customers/users, technical resources, and to leadership across all levels Moderate level experience with SASE(CASB/SWG/VPN) Migrating on-premise security stack to a cloud provided solution Moderate experience with DLP and data protection platforms, including one or more of the below capabilities/functions. Interpreting requirements from stakeholder into specific detection logic Developing advanced and accurate detection logic Exact Data Matching across multiple vendor solutions Data classification and tagging General experience with web proxy platforms in the form of daily operations, updates to the rules, and configuration of the platform. General experience with Identity and Access Management (IAM) topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures especially relating to Azure. General experience focusing on daily operations, support, and configuration with one or more of the below platforms: NextGen Firewall IPS Advanced Malware Protection General Programming/Scripting proficiency (i.e. Python, Perl, BASH, experience with API calls, etc.) Packet Brokers Linux or windows server administration Endpoint security tools such as Firewall, EDR's, sandboxing Networking such as basic protocols, communication, reading through packet captures, etc. Route-Switch Moderate experience with logging, monitoring and reporting platforms such as Splunk, Grafana, Zabbix, and others. General knowledge of native security controls for popular SaaS (e.g. Box, Office, 365, ServiceNow, etc) General experience executing Executive Level presentations General experience with advanced Excel reports and pivot charts Understanding/Following ITIL frameworks for Incident, Change, and Problem Management Anticipates customers' needs and proactively develops solutions to meet them Analyze performance, identify areas of concern, and formulate action plans Effective clerical/note taking skills

1

Support Engineer - 5.3 - India