Chicago, IL, 60684, USA
1 day ago
Sr Cyber Defense Systems Engineer
**WHO WE ARE** As the nation's largest producer of clean, carbon-free energy, Constellation is focused on our purpose: accelerating the transition to a carbon-free future. We have been the leader in clean energy production for more than a decade, and we are cultivating a workplace where our employees can grow, thrive, and contribute. Our culture and employee experience make it clear: We are powered by passion and purpose. Together, we're creating healthier communities and a cleaner planet, and our people are the driving force behind our success. At Constellation, you can build a fulfilling career with opportunities to learn, grow and make an impact. By doing our best work and meeting new challenges, we can accomplish great things and help fight climate change. Join us to lead the clean energy future. **TOTAL REWARDS** Constellation offers a wide range of benefits and rewards to help our employees thrive professionally and personally. We provide competitive compensation and benefits that support both employees and their families, helping them prepare for the future. In addition to highly competitive salaries, we offer a bonus program, 401(k) with company match, employee stock purchase program; comprehensive medical, dental and vision benefits, including a robust wellness program; paid time off for vacation, holidays, and sick days; and much more. Expected salary range of $116,100 to $129,000, varies based on experience, along with comprehensive benefits package that includes bonus and 401(k). **PRIMARY PURPOSE OF POSITION** Responsible for the maintenance and operation of the Cyber Security Operations Center (CSOC) and for providing targeted security advisory services. Tests, implements, deploys, maintains, reviews, and administers the infrastructure hardware, software, and documentation that are required to effectively manage network defense. Enables the Cyber SOC to meet key performance metrics across five key capabilities: Security Monitoring, Incident Handling & Response, Digital Forensics & eDiscovery, Cyber Threat Intelligence, and Technical Solutions Development. Responsible for the creation of content for use in monitoring toolsets while maintaining a uniform view of security monitoring architecture. Tests, implements, deploys, maintains, and administers the infrastructure hardware and software. **PRIMARY DUTIES AND ACCOUNTABILITIES** + Continually monitor, refine & improve upon the security technologies utilized by the CSOC. Perform system administration on specialized cyber defense applications and systems (e.g., EDR, Cloud and Email Security, SIEM, appliances) to include installation, configuration, maintenance, backup and restoration. Build, install, configure, and test dedicated cyber defense hardware. + Provide Log & Monitoring Design Services. Identify potential conflicts with implementation of any cyber defense capability (e.g., tool testing and optimization). + Deploy new data source feeds into SIEM & develops initial content for monitoring. Monitor SIEM infrastructure performance + Provide Security Advisory Services. Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources. + Responsible for CSOC capacity planning. Responsible for CSOC Release Management & CSOC Change Management + Assure that all equipment, systems, applications & appliances of threat & vulnerability management technologies are available & running effectively. Assist in assessing the impact of implementing and sustaining a dedicated cyber defense infrastructure. + Lead projects to further enhance security technologies, practices, processes **MINIMUM QUALIFICATIONS** + Bachelor's Degree in Computer Science, Information Technology (IT), or a related discipline, and 5 to 8 years of solid, diverse experience in cyber security Systems operations, or equivalent combination of education and work experience. + Knowledge in the following core technical competencies: EDR, Microsoft security suite, Linux, **Palo Alto** , Operations, Engineering, Content Development, Internetworking, TCP IP + Knowledge of the Software Development Life Cycle (SDLC) + Knowledge of how network services and protocols interact to provide network communications. + Knowledge of Security principles such as Threat Lifecycle Management & Incident Management & Lifecycle. + Knowledge of Cyber SOC processes and Cyber SOC Engineering. + Knowledge of network protocols (e.g., Transmission Control Protocol/Internet Protocol [TCP/IP], Dynamic Host Configuration Protocol [DHCP]), and directory services (e.g., Domain Name System [DNS]). + Knowledge of network traffic analysis methods. + Knowledge of packet-level analysis. + Knowledge of basic system administration, network, and operating system hardening techniques. + Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). + Knowledge of OSI model and underlying network protocols (e.g., TCP/IP). + Skill in troubleshooting and diagnosing cyber defense infrastructure anomalies and work through resolution. + Skill in securing network communications. + Knowledge of protecting a network against malware. + Knowledge of web filtering technologies. + Knowledge of cyber defense policies, procedures, and regulations. + Knowledge of test procedures, principles, and methodologies (e.g., Capabilities and Maturity Model Integration (CMMI)). + Knowledge of basic system, network, OS hardening techniques and security benchmarks **PREFERRED QUALIFICATIONS** + Graduate degree in cyber security or related area of expertise. + Ability to demonstrate analytical skills, technical knowledge, and practical application of cyber and information security principles to business leaders and technical staff + CISSP, GCLD, PCCSE, AZ 500 or other related certifications + Skill in using security event correlation tools. + Demonstrated knowledge of cyber defense policies, procedures, and regulations. + Demonstrated advanced knowledge in the area of Cyber SOC operations; particularly in Cyber Security Systems Engineering Constellation is proud to be an equal opportunity employer and employees or applicants will receive consideration for employment without regard to: age, color, disability, gender, national origin, race, religion, sexual orientation, gender identity, protected veteran status, or any other classification protected by federal, state, or local law.
Confirm your E-mail: Send Email