Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.
We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.
As we serve a global customer base and our mission is to secure human progress, the security expertise is essential to our business, that’s why we seek out the industry’s passionate and brightest minds to assess and understand the sense of urgency of the threat and to apply that research and experience across our operations, enhancing the security posture of the organizations that we are protecting.
We are looking for a Threat Engagement Manager that is a core component of the Secureworks® Taegis™ ManagedXDR service and your primary role will be to partner with customers to ensure they fully benefit and understand the service through periodic meetings to review their security posture and to provide guidance and recommendations on how to defend against potential threats.
Skills and Abilities
Client-focused with a passion for delivering service excellence
Ability to have consultative conversations with the customer
Understanding of threat hunting methodologies using both endpoint and network-based telemetry
Ability to adjust in a fast-paced multidisciplinary environment, prioritize efforts, manage customer expectations, and possess professional negotiation skills
Must possess strong communication skills to be able to conduct presentations (remote and in person) to large groups – build and deliver, metrics, analysis, threat landscape, observations/recommendations
Familiar with root cause analysis writing and delivery
Ability to mentor peers and team members
Strong problem solving, analytical skills, and maintaining a sense of ownership
Works independently with minimal supervision; self-starter and highly motivated
Ability to work effectively across functional teams; assist and/or provide guidance to internal teams in establishing appropriate priority of issues
5 + years of relevant experience or equivalent combination of education and work experience.
Completion of a Bachelor’s degree or equivalent program in Computer Science, Network Security, Information Security or other applicable field and 5+ years of work experience in the field.
Experience and strong understanding of:
Performing both endpoint and network-based investigations
Reviewing logs to identify evidence of past intrusions
Pivot off indicators within networks to identify the scope and breadth of attacks
Malware and exploit kit functionality
Operating system and application exploits
Lateral movement and persistence establishment mechanisms
Detection of anomalous system activity
Threat hunting methodologies
Incident response and incident handling processes
Two (2) or more of the following operating systems (Windows, Linux, Mac OS) at a filesystem level.
Fundamental Internet protocols, services and technologies (e.g. HTTP/HTTPS, DNS, SMTP, SSH, LDAP, TCP/IP, UDP, ICMP, JSON, REST, etc.)
Common security controls (e.g. firewalls, proxies, IDS/IPS, WAF, etc.)
Industry certification from vendors: ISC2, GIAC, EC-Council, Cisco, Juniper, CompTIA, ITIL, Unix, Microsoft, Oracle, etc.(e.g. CISSP, GCIA, GWAPT, GCIH, GCFA/GCFE, GREM, OSCP/OSCE, eLearn THP or similar certification preferred)
Secureworks, a Dell Technologies company, is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.