Retirement
Unemployment Insurance
My Collection

Maxana Jobs (1)

Security Engineer

Maxana Reno, NV
APPLY

About Us Maxana was founded in 2019 and our mission is to enhance and improve the world ofwork, enable the art of the possible, and make positive change to transform the planet andpeople's lives.

Maxana helps transform companies and customer lives through cutting edge engagementsin Green Tech, Industrial Internet of Things (IIoT) and critical Digital Initiatives that make areal difference for our customers.

Our unique business model delivers partner and internalexecution team seamlessly providing exceptional value, technology leadership, andprogram expertise every time.

Maxana brings both a fundamental architectural approach with hands on tech andproblem solving to every engagement. Maxana’s World Class Professional Servicestranscend traditional Big Firm consulting and professional services models by bringing theright talent to engagements with no bait and switch.

From full turnkey CTO in a BoxSolution Services with leading CTOs, Architects, and Application / Platform developmentteams, to our ServiceNow Solutions, Maxana enables your company to make the most ofyour most critical Transformation investments.

Maxana brings both Vertical market expertise in the areas of Utilities and Financial Serviceswith a deep bench of technology subject matter experts and leaders in the area of cuttingedge Blockchain use cases, Industrial Internet of Things, Green Grid architecture, andDigital Banking and Omni-channel.

Maxana is seeking a Security Engineer to join a growing Cyber Security team. In this role, we’re looking for an individual who is passionate about Cyber security.

This is a great opportunity for someone to be part of the building Cyber security program from the ground up with a vision to build Cyber resilient organizations.

This position is the most pivotal and highly visible to create an impact and continued growth, as it is responsible for the design and implementation of various security controls and collaboration across the organization.

This role is a mix of Security Architect, Engineering and supporting Security Operations as required. This role requires a high degree of ownership, velocity, and aptitude for independently leading Cyber Security projects and driving the entire lifecycle of the project.

You will have broad latitude to work independently and coordinate and interact with a broad group of bright and energetic people throughout the company.

Core Responsibilities

  • Responsible for multi-disciplinary domains of the Cyber security program, such as Threat & vulnerability management, End point security, SIEM solution, Cloud Security & Data security.
  • Lead multiple Cyber security projects to evaluate, implement, manage, and build operational efficiency.
  • Strengthen Nave’s security posture through offensive security assessments including the identification and exploitation of vulnerabilities across the system
  • Improve Security operational efficiency by building and evaluating workflow processes, procedures, checklists, automation, and tooling
  • Build automation to respond commonly anticipated Security events and mature the respond, recovery function for Cyber security.
  • Develop tools, technique, and processes to continuously find gaps and improve security posture
  • Work in collaboration with engineering team and IT team to formulate mitigation solution for various threats and vulnerabilities.
  • Develop various use case for security monitoring & playbooks to mitigate those threats
  • Conduct threat analysis by means of active penetration testing against web applications,
  • APIs and Infrastructure.
  • Build & manage relationship with SOC, define escalation path, playbooks & ongoing fine tuning of SIEM solutions
  • Review, Analyze and mitigate SAST, DAST, SCA, CSPM and penetration test results in Collaboration with the developers for security remediations to close identified gaps and validate the remediations.
  • Assist and execute technical security assessments to identify risk, likelihood and impact an attacker may have on the System due to weak or missing controls
  • Provides 24x7 on-call support on rotation for escalated security incidents

Skills

  • Hands on experience with penetration testing, red / blue / purple team exercise
  • Hands on experience on managing security tools such as End Point security, EDR, SIEM,
  • Threat intelligence & hunting platform, vulnerability management platform, SOAR & Cloud security.
  • Hands on experience with scripting / programming of Python, JSON, PowerShell and various SIEM Language.
  • Solid understanding of modern web application technologies, APIs, Cloud and architectures.
  • Strong ability to identify and exploit security gaps / vulnerabilities on endpoint devices, applications, and networks
  • Solid understanding of MITER ATT&CK framework and all phases of adversary emulation operations including reconnaissance, social engineering, exploitation, post-exploitation, covert techniques, lateral movement, and data exfiltration
  • Good understanding of security frameworks such as NIST CSF, FFIEC, OWASP Top 10, and CIS 18
  • Must be independent and able to influence the security decision within the organizations
  • Team player with interpersonal, collaborative and consultative skills
  • Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner

Qualifications

  • 8+ years of core experience in the area of Cyber security and Cloud security
  • Degree in Computer science or Cyber security or equivalent industry experience
  • Must be Certified at least one OSCP, CEH, GPEN certification in Cloud security, CISSP, CCSP or any security related certification would be great plus

This is a remote position.

Full-time
APPLY