Dell SecureWorks is a market leading provider of world-class information security services with over 2,800 clients worldwide spanning North America, Latin America, Europe, the Middle East and the Pacific Rim. Organizations of all sizes, including more than ten percent of the Fortune 500, rely on Dell SecureWorks to protect their assets, improve compliance and reduce costs. The combination of strong client service, award-winning security technology and experienced security professionals makes Dell SecureWorks the premier provider of information security services for any organization. Positioned in the Leader’s Quadrant of Gartner’s Magic Quadrant for MSSPs, Dell SecureWorks has also won SC Magazine's "Best Managed Security Service" award for 2006, 2007, 2008, 2009 & 2011.
This is a senior operations engineering position. The Log Management Service Senior Security Engineer position provides Tier IV engineering and support for the Log Management Service associated with SecureWorks' Managed Security Services. A strong background in systems administration with a focus on UNIX/Linux and TCP/IP networking is a core requirement. Experience with systems event logging is useful in providing log management solutions that meet regulatory compliance and security alerting requirements. Understanding, interpretation and implementation of log collection, data retention and reporting requirements of major regulations such as the Payment Card Industry Digital Security Standard (PCI DSS) and Sarbanes-Oxley (SOX) is the core job responsibility, though prior experience with particular regulatory frameworks is not a requirement. Incumbents demonstrate strong technical analytical skills while also possessing broad knowledge of industry best practices and security principles.
Essential Duties & Skills
Provide support to the Engineering group to assist in resolving complex issues relating to the fundamental operation of the Log Management Service.
Provide expert guidance to clients in log management architecture issues, including log source collection strategy, log collection technology (LCT) configuration and reporting needs.
Ability to translate regulatory logging requirements (PCI, SOX, etc.) into a functional solution specific to customer needs.
Analyze custom application log sources, configure log collection technology to parse custom log formats where required.
Document custom log formats, event types, and specific parsing requirements for use in security alerting applications.
Develop tools to automate log analysis and create library of log parsing regular expression sets.
Facility with Shell, Perl, Python, or other UNIX scripting platform.
Create and implement other advanced correlation objects such as anomaly detection thresholds and meta events.
Review product architectures for technical correctness and operational suitability and work with SecureWorks' Solution Design and Implementation (SDI) group to ensure that custom or complex solutions are deployable and manageable.
Create scripts and tools to automate and accomplish a variety of configuration and update tasks as well as assist in the functional operation and maintenance of SecureWorks' Engineering architecture.
Develop training documentation and organize instructional events to support various skill levels on SecureWorks' supported Log Management offerings.
Take part in a low-volume rotating 24x7 on-call support schedule.
Ability to work occasional weekends and late nights based on client demand and field support requirements.
- Perform other essential duties as assigned.
Knowledge, Skills, & Abilities
Ability to manage multiple projects from conception to delivery.
Ability to interact with members of cross-functional team, reach consensus, and show results.
Experience of writing technical specifications for new development projects is helpful.
Ability to think strategically and define clear execution plans.
Strong written and verbal communication skills for both internal communication as well as direct contact with end clients.
Strong leadership skills and a capacity to advance team cohesion.
Education and Experience:
BA Degree or equivalent work experience with proof of continuing education.
9 + years of security and systems engineering with strong, hands-on knowledge of logging solutions.
Experience with log retention strategy or regulation compliance for PCI, SOX, is helpful but not a requirement.
Experience with centralized system logging solutions, such as syslog-ng, LogLogic, ArcSight, Splunk, or other vendor technologies is likewise helpful but not a requirement.
Strong knowledge of scripting in Bash, Perl, Python or other environment, and strong Regular Expression skill is helpful.
Advanced UNIX/Linux knowledge is essential.
Advanced TCP/IP networking is essential.
Ability to quickly ramp us skills on GUI based vendor platforms is essential.
- SecureWorks is an Affirmative Action/Equal Opportunity Employer.
Dell is an Equal Opportunity Employer.
To learn more about our commitment to Diversity & Inclusion, visit:
Equal Employment Opportunity Policy Statement
Life at Dell
Learn about Dell culture, the interviewing process and benefits offered in your location:
Life at Dell
Dell Financial Services L.P. - 18 months ago