Extended Expertise Consultant/Network Security Consultant - XPANSE/XDR

• The resource must have strong prioritization, organizational, and interpersonal skills. • They must be able to work decisively and efficiently under pressure. • The resource must communicate technical concepts and risks to stakeholders with little to no cybersecurity understanding. • Ability to work as a liaison/intermediary with multiple stakeholders. • Ability to report on platform adoption, Ability to communicate project status to stakeholders on a weekly or monthly basis XPANSE qualifications: • Familiarity with the Attack Surface Management or a related field in cybersecurity (eg, discovery methods, port scanning, vulnerability management, etc) • Professional experience in technical client delivery & engagement and/or technical intelligence analysis • Knowledge of Advanced Persistent Threat (APT) actors and their Tactics, Techniques, and Procedures (TTPs) • Experience applying threat hunting techniques to track attack patterns to malware variants to uncover previously undetected adversary behavior Additional Requirements: • Endpoint protection deployment, operationalization, troubleshooting, training experience • Experience as a Security Incident Responder or SOC analyst/manager • Experience in Python or JavaScript ------------------------------------------------------------------------- Job Description: Your Career The Resident Engineer (newly branded Extended Expertise) is an integral part of our mission within our Professional Services team. As an Extended Expertise Engineer, you will work on-site/remote with our customer(s) supporting our mission to help them quickly and completely adopt our End Pointy Platform, leaving them more secure. This is a highly technical, hands-on role and you will develop and maintain expert-level skill sets on our products and solutions deployed within the customer's environment. Your Impact Learn & understand the customer s business requirements and the threat landscape that is most applicable to their industry s vertical sector Endpoint protection deployment, operationalization, troubleshooting, training experience Experience as a Security Incident Responder or SOC analyst/manager Familiarity with cloud technologies, providers (Google Cloud Platform, AWS, Azure), use-cases Qualifications: Your Experience Provide remote support to the customer Familiarity with the Attack Surface Management or a related field in cybersecurity (eg. discovery methods, port scanning, vulnerability management, etc.) Professional experience in technical client delivery & engagement and/or technical intelligence analysis Knowledge of Advanced Persistent Threat (APT) actors and their Tactics, Techniques, and Procedures (TTPs) Experience applying threat hunting techniques to track attack patterns to malware variants to uncover previously undetected adversary behavior Endpoint protection deployment, operationalization, troubleshooting, training experience Experience as a Security Incident Responder or SOC analyst/manager Familiarity with cloud technologies, providers (Google Cloud Platform, AWS, Azure), use-cases Time to Value - Analyze customer requirements, provide guidance & assistance throughout the customer lifecycle to ensure a quick and successful product deployment Product Expert - Act as the product SME, working together with product and engineering teams ensuring our customers and partners get the most out of our products Drive Product Adoption - Continuous contact with customers to expand adoption of our product by utilizing new features and developing additional innovative use cases Networking experience in TCP/IP, OSI Model, troubleshooting, analysis Experience in customer-facing roles Familiarity with machine learning and its various applications within cybersecurity Familiarity with the different enterprise security and IT products, processes, and ecosystem Threat hunting and detection engineering experience of tuning alerts, development of custom BIOCs, and development of correlation rules for new log sources Experience with log ingestion and parsing rules for XDR The ability to develop and maintain scripts in Python or Powershell is a plus Familiarity with XQL, SQL, or a query scripting language Experience with SIEM tools, such as Splunk Familiarity with XDR APIs Basic Linux system administration & troubleshooting experience Ability to work under pressure and prioritize tasks accordingly Apply tot his job Apply tot his job