How you will create an impact

The Cyber Security Engineer will be part of AIG's Enterprise Information Security Organization, responsible for Engineering and Operational support of an Enterprise-wide Endpoint Security Management system and procedures. The candidate must have extensive experience securing enterprise-level Cloud services, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) across multiple cloud providers, including AWS, and Microsoft Azure (Azure).The candidate will identify core requirements, design, and implement Endpoint security technologies, working with stakeholders to perform ongoing tuning of those technologies to protect and mitigate Security threats to corporate assets and users.

The individual in this position will lead as subject matter expert (SME) working in a team of Engineers and interacts closely with other IT groups like Security Architecture, Infrastructure Build and Operations teams, and gCDC SOC analysts for research and remediation of Security vulnerabilities, controls, and settings. The Cyber Security Engineer (SME) be primarily responsible for but not limited to the following functions:

Work with stakeholders to Test, maintain, and enforce security prevention policies and procedures of CrowdStrike Falcon Platform.Work with stakeholders to test new CrowdStrike sensor versions for Microsoft, Linux and MAC platform and rolled out in production.Work closely with the vendors on roadmap development and strategic direction for enhancements to meet business security requirements.Perform Security related tasks, including day-to-day administration, fine tuning to reduce false positives and improve effectiveness and alerting, of Tools related to Endpoint/Host based Security, Data Loss Prevention (DLP), Cloud Security, Malware protection and Security Incident Event Management.Ensure that Security tools are performing optimally, and events are detected in time to provide quick response and remediation of Security incidents.Work on Service desk requests, Incident tickets and troubleshoot issues to assist Incident management teams. 

What you'll need to succeed

Bachelor’s degree in computer science or other technical disciplines or equivalent relevant experience.10+ years in an IT Security Engineering or Operations role with a focus on Endpoint Security Management tools. Expert level knowledge in CrowdStrike Falcon Platform.CrowdStrike DLPNext Generation SEIMExposure managementFusion SOARInvestigateLogScaleHost setup and managementAPI ConfigurationIdentity ProtectionIntermediate level knowledge is highly desired for below platforms:TaniumMicrosoft Defender DLP for EndpointLookout for MobileAzure WVD / CitrixAnsibleKnowledge of cyber security practices, challenges, tools and techniquesRecent and relevant experience in vulnerability analysis and exploitation techniques.Troubleshoot issues within the product when necessary, assisting different teams, crash dumps, performance monitor and release blockers.In depth knowledge of Critical Security Controls like NIST, CIS Benchmarks, DISA STIG standards etc.Familiarity with International Security standards and Industry framework like ISO 27001/27002, PCI DSS and SOX.In depth knowledge and expertise with Infrastructure hardening and Security settings for Windows and Linux.Intermediate to Expert level knowledge on Windows & Active Directory, Unix/Linux Operating Systems.Good scripting knowledge using PowerShell, Python, Linux shell is desired.Basic knowledge of Cloud computing, Virtualization concepts and PaaS/SaaS services.Strong knowledge of TCP/IP and HTTP protocols.Be an energetic “self-starter” who is empowered to take ownership and be accountable for deliverables, both individually and as part of a growing team.Team player – able to lead, mentor, communicate, collaborate, and work effectively in a globally distributed team.

Preferred IT Certifications:

CrowdStrike Certified Falcon Administrator (CCFA)Tanium Certified Administrator (TCA).CISSP or other Security certification.Microsoft Azure or Linux Certifications.AWS Certifications.

Reimagining insurance to make a bigger difference to the world

American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.

Welcome to a culture of belonging

We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through our flexible work arrangements, diversity and inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The diversity of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.

AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.

AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities.  If you believe you need a reasonable accommodation, please send an email to candidatecare@aig.com.  

Functional Area:

IT - Information Technology

AIG Employee Services, Inc.