Vacancy caducado!
Security Engineer Job Description
Security Engineer - CoStar Group - Washington, DC OVERVIEW CoStar Group, Inc. (NASDAQ - CSGP) ( www.costar.com ) is commercial real estate's leading provider of information and analytic services.Founded in 1987, CoStar conducts expansive, ongoing research to produce and maintain the largest and most comprehensive database of commercial real estate information. Our suite of online services enables clients to analyze, interpret and gain unmatched insight on commercial property values, market conditions and current availabilities.Headquartered in Washington, DC, CoStar maintains offices throughout the U.S. and in Europe with a staff of approximately 4,300 worldwide, including the industry's largest professional research organization.About our Security Team:We are a collaborative group that regularly cross train each other in multiple disciplines. We love being able to work with the best tools in the industry and have the freedom to design our tool sets. We are looking for a smart, creative and passionate Security Engineer to help continue improving our information security posture at The CoStar Group. Someone who enjoys working with all departments of The CoStar Group helping drive and shape the way we manage the protection of our customers and our ever growing data environment.RESPONSIBILITIES- Identify vulnerabilities and oversee remediation using vulnerability management tools like Nessus, Qualys, Rapid7 Nexpose / InsightVM, Retina, etc .
- Manage and operate SIEMs such as LogRhythm, Sentinel, Splunk, ArcSight, QRadar to identify emerging threats and execute remediation
- Solidify security across a very large set of workstation, server, instance, and container endpoints using industry leading tools.
- Secure our perimeter with a zero trust approach including multifactor authorization, conditional access, MDM host checking, and environmental factors to make real-time access decisions.
- Bachelor's Degree required, preferably in Computer Science (or related field)
- Minimum 3 years combined experience in field of Information Security or Information Technology (with at least 18 months directly focused on Cyber Security)
- Required basic functional scripting/programming skills including the to ability to write a few basic statements and commands in at least one common security scripting language such as Regex, Python, Powershell, Ruby, JavaScript, Splunk SPL, Painless Script, Azure KQL, etc.
- Fluent knowledge of Desktop, Server, Container, or Cloud environments as pertains to a rich understanding of network and systems underlying technologies to extract security insights including syslog, DNS, firewalls, routers, LDAP, load balancers, and Event Logs
- Experience using at least 3 security tools (SIEMs, Scanners, XDR, EDR, EPP, NGFW`) to audit infrastructure, detect issues and coordinate remediation efforts
- Familiarity or experience with ethical hacking, penetration testing, blue team, red team, or purple team exercises
- Security certifications such as SANS/GIAC, CISSP, ISACA, CISM
- Experience scanning large global autonomous compute environments to identify and remediate vulnerabilities to maintain compliance with CIS, NIST, PCI, SOX, or other industry standards and compliance benchmarks.
- Experience with network perimeter tools such as Akamai, Palo Alto, Zscaler, Arbor Networks, Duo Beyond, Check Point, Cisco Source Fire, Snort, Symantec Blue Coat, Proofpoint, etc.
- Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug
- Life, legal, and supplementary insurance
- Commuter and parking benefits
- 401(K) retirement plan with matching contributions
- Employee stock purchase plan
- Paid time off
- Tuition reimbursement
- On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes, as well as Segways and bikes available for use during the day
- Complimentary gourmet coffee, tea, hot chocolate, prepared foods, fresh fruit, and other healthy snacks
Vacancy caducado!