Principal Security Detection Engineer

Job Locations

US-Remote

Our Mission

Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS.Come be part of remarkable.

Overview

How you can make a difference

The Principal Security Detection Engineer will manage and maintain the rules and capabilities for security detection and prevention. This senior leader will provide thought leadership and direction for the Threat Management team at HealthEquity.

What you'll be doing (Job Duties and Responsibilities)

Provide thought leadership and formulate detection and prevention strategies for the Threat Management team.

• Develop, deploy, and manage rules and correlations for security event and incident alerting, notification, and prevention.

• Manage the operational usage of detection technologies such as SIEM, EDR, and WAF.

• Lead efforts on security event detection and prevention with SIEM, WAF, EDR, and additional notification tools.

• Serve as an escalation point for tuning notifications, detections, and preventions of security alerts and events.

• Own multiple security projects and effectively execute core objectives and deliverables.

• Build, develop, and foster professional relationships with technology and business leaders and SMEs to present, influence, and gain traction on security projects.

• Implement security controls consistent with the security program's mission measures.

• Multi-task and problem-solve in a changing environment impacted by new threats and competing priorities.

• Identify security measures and controls when new threats or security gaps are identified.

• Present complex security topics, risks, and issues to senior leaders and technical peers.

• Lead security control definition/creation and document requirements for technology and business initiatives.

• Influence peer groups and integrate security standards and controls across business and technology initiatives.

• Apply Cybersecurity framework-based controls to on-premise and cloud components.

• Function as an internal consultant with respect to technical specialty areas (application, data, security, infrastructure, cloud).

• Recommend changes to enhance security and reduce risk where applicable.

• Build strong relationships with other technical personnel to gather trust and develop grassroots support for key initiatives.

*

What you will need to be successful (Skills, Knowledge, and Experience)

• Extensive knowledge of SIEM, WAF, EDR, DFIR, and CTI.

• Minimum of 10 years of consistent information security experience.

• Experience in multiple SOCs or MSSPs.

• Ability to adapt to frequent priority changes.

• Excellent communication and listening skills.

• Excellent interpersonal skills, including the ability to interact effectively and professionally with individuals at all levels, both internal and external.

• Experience with PowerShell to improve security operations tasks is a plus.

• Ability to manage multiple tasks/projects simultaneously within inflexible time frames.

• Commitment to customer service excellence.

• Desire to learn, grow, and go beyond personal capabilities.

• In-depth knowledge of securing organizations, cloud-based resources, networks, systems, databases, applications, and processes.

• Self-motivated with strong organizational skills and superior attention to detail.

• Team player capable of developing strong collaborative working relationships with internal partners and effectively engaging and building consensus among cross-functional teams.

• Preferred Certific ations, Licenses, Registrations: CISSP, CISM, GCFA, GCFE, GCIH, or similar security certifications.

• Travel Requirements: Less than 10%

#LI-Remote

This is a remote position.

Salary Range

$127,000.00 To $165,000.00  / year

Benefits and Perks

The... For full info follow application link.