Security Engineer, Contract

Overview of 66degrees

66degrees is a leading consulting and professional services company specializing in developing AI-focused, data-led solutions leveraging the latest advancements in cloud technology. With our unmatched engineering capabilities and vast industry experience, we help the world's leading brands transform their business challenges into opportunities and shape the future of work.

Overview of Role

A client of 66degrees’ is seeking a consultant to engage on a 6 month remote contract with the potential to extend/convert. Interested candidates should have the following required skills and the ability to work independently as well as within a team environment. 

Candidates will manage multiple aspects of information security operations, response, and engineering. This position will contribute to a team focusing on the included, but not limited to, incident response, playbook development and execution, operational engineering, tooling maintenance, as well as being a key participant within Information security programs. 

Responsibilities

• Manages and is responsible for the successful completion of all tasks in assigned projects.
• Contribute to Security Operations and Engineering Team focused on maintaining the security integrity of Clients’ mission critical suite of applications.
• Available 24/7 for any critical security incident response that may arise which requires immediate resolution.
• Work to ensure security tooling within client’s environments are operational and operating at needed levels of service and availability.
• Contribute to practice continuous improvement in response playbooks and security tooling. 
• Maintains current knowledge of relevant information security technology and techniques, bringing forth ideas for modernization and improvement.
• Ensure operational practices provide a sound foundation that utilizes tools and processes for rapid identification of security events to address and mitigate risks.
• Contribute to “Continuous Improvement and Posture Management” efforts, in respect to client's information security tooling and systems.
• Assist in Plan, organize, and execute multiple responsibilities to achieve project goals and provide technical leadership to move operational projects to completion.
• Contribute to security requirements, standards, procedures, and reference architectures to comply with policies and technical standards.
• Provide Level I Support for user password resets and MFA onboarding, resets, and troubleshooting.
• Communicate with stakeholders to assist in remediation efforts.
• Evaluation of vulnerability analysis, endpoint, and security tooling packages to ensure acceptable levels of efficacy are met.
• Contribute in root-cause analysis for security incidents and events, establish preventive measures, mitigations, or remediations.
• Contribute to weekly and monthly posture and response operations reporting.
• Assist in the configuration of new applications, infrastructure for needed telemetry for security operations.
• Contribute to the analysis and recommendation of upgrades, changes, implementation specific to the support and scaling of client’s security operations.
• Support the Information Security Governance and Compliance team as needed during risk assessments, internal and external Information Security Audits, and Vendor reviews

Qualifications

• Bachelor’s degree in technology or applicable experience.
• Related certifications (e.g., GSEC, CISSP, GIAC, AWS) preferred.
• 5+ Years of experience within information security operations in multiple roles.
• 3+ years of experience with cloud infrastructure (AWS, GCP, Azure) and O365 services and technology
• 3+ years of experience with security incident response and operations
• 2+ years of experience defining, refining, and driving efficiency in operational processes.
• Extensive experience with, but not excluded to: TCP/IP, DNS, WAF, SEIM, and SOAR technologies.
• Experience working with and managing Active Directory / MS Entra ID
• Experience with SOAR (Security Orchestration, Automation, and response)
• Experience with KQL and SPL or other Query Languages
• Experience with powershell, python, and shell scripting
• Knowledge of information security standards, principles, and practices required.
• Knowledge of industry security standards, guidelines, and regulatory/compliance
• requirements related to information security such as ISO 27001, NIST 800-53, SOC2, PCI, SOX, etc.
• Knowledge of email transmission, routing, and authentication concepts including, SMTP, SPF, DKIM and DMARC
• Prioritization, decision making, critical thinking, communication, and relationship building skills

66degrees is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to actual or perceived race, color, religion, sex, gender, gender identity, national origin, age, weight, height, marital status, sexual orientation, veteran status, disability status or other legally protected class.