[Remote] Cyber Security Engineer #11336
Note: The job is a remote job and is open to candidates in USA. ECCO Select is a talent acquisition and consulting company specializing in people, process and technology solutions. They are seeking a skilled Cyber Security Engineer to support a critical infrastructure and utilities environment, focusing on deploying, administering, and optimizing an enterprise-scale security technology stack. The role involves managing security tools and processes, collaborating with various teams, and contributing to the overall security practices.ResponsibilitiesAdminister and optimize the CrowdStrike Falcon platform, including the Identity Protection module with Active Directory integrationManage and enhance Varonis data security capabilities, including data discovery, access governance, and insider threat detectionConfigure, maintain, and troubleshoot Palo Alto firewalls and GlobalProtect VPNs to ensure secure network access across IT and OT environmentsSupport and expand Guardicore (Akamai) microsegmentation policies to help reduce lateral movement and safeguard critical workloadsBuild and optimize Cribl pipelines for efficient log routing, enrichment, and data reduction for use with SIEM and security analytics platformsCollaborate closely with SOC, architecture, and IT teams to align security tools and processes with operational and compliance requirementsContribute to technical documentation, runbooks, and continuous improvement of the security stack and practicesProvide technical expertise in incident response activities related to managed security platformsSkillsAt least 7 years of professional experience in cybersecurity engineering or infrastructure security rolesDirect expertise with CrowdStrike Falcon, particularly leveraging the Identity module and integrating with Active DirectoryProficiency with Varonis for data governance and threat detectionExperience configuring, maintaining, and optimizing Palo Alto Networks firewalls (Panorama experience preferred) and GlobalProtect VPNsExperience with Guardicore (Akamai Segmentation) or similar microsegmentation technologiesHands-on familiarity with Cribl Stream or Cribl Edge for data pipeline and log management in support of security analyticsStrong understanding of Active Directory security concepts, including Kerberos, LDAP, and privileged access managementAbility to work effectively in cross-functional enterprise environments, supporting both IT and OT systemsExperience supporting security within critical infrastructure, utilities, energy, or OT/ICS environments is highly desiredFamiliarity with compliance frameworks, especially NERC CIP, is preferredRelevant certifications are a plus, such as: Palo Alto PCNSE, CrowdStrike CCFA / CCFR, AWS or general cloud security certificationsExpertise in the following tools and technologies: CrowdStrike Falcon (Endpoint & Identity Protection), Varonis Data Security Platform, Palo Alto Networks (Firewalls, Panorama, GlobalProtect), Guardicore (Akamai Segmentation), Cribl (Stream / Edge), Active Directory / Identity Security, SIEM and enterprise logging platformsCompany OverviewECCO Select is an information technology and services company. It was founded in 1995, and is headquartered in North Kansas City, Missouri, USA, with a workforce of 201-500 employees. Its website is https://www.eccoselect.com/.