Security Engineer, Threat Detection Engineering

Job Expired

If you have what it takes to become part of the Vistra family and would like to start a promising career with a global leader, take a look at the exciting employment opportunities that are currently available and apply online.

Where permitted by applicable law, candidates must be fully vaccinated against COVID-19 by date of hire, if not currently employed by a subsidiary of Vistra Corp. Fully vaccinated means at least two weeks have passed since the second dose in a two-dose series, such as the Pfizer or Moderna vaccines, or a single-dose vaccine, such as Johnson & Johnson’s Janssen vaccine.

Job Summary

As a member of the Vistra Cyber Security Team, the DevSecOps Engineer will work with agile teams to ensure security is considered throughout development through the implementation of automated guardrails and security test. They will assist in design and drive development of security testing and validation into automated tools and pipelines. They will serve as the technical liaison between the Enterprise Architect teams and the Engineering teams. Individuals within this role will specialize in the security disciplines related to automation of security controls, and ideally would have experience or expertise in DevOps.

Job Description

Key Accountabilities

  • Provides technical support to integrate security and compliance requirements into all enterprise technology systems and projects as part of the SDLC process by working closely with various other company architects and application teams.
  • Creates and maintains documentation related to security processes, procedures and infrastructure.
  • Assesses current applications and architecture to determine methods for automating security testing and control validation.
  • Executes plans for implementing management directives in most secure manners with automation.
  • Provides security guidance and requirements to various technology teams on methods for driving security into every aspect of the established SDLC.
  • Works closely with cross-functional teams as a subject matter expert for security standards and advises/contributes to development as needed.

Education, Experience, & Skill Requirements

  • Experienced gained through college degree programs and/or certifications in business or information systems related fields, with an emphasis in information technology or cyber security
  • 2 – 4 years of dedicated information security experience OR 3 – 5 years of information technology administration experience
  • Experience designing/implementing security controls in AWS and/or Azure
  • Experience with automating processes and/or security controls
  • Familiarity with DevOps, DevSecOps, and Agile SDLC methodologies
  • Proven knowledge of security concepts (CISSP, CISA, CISM, GPEN, GWAPT, GCIH, other GIAC certifications, OSCP, CEH, PCNSE, etc.) .
  • Experience operating in a DevOps team and solving security related objectives through automation.

Key Metrics

  • Enhances security team accomplishments and competence by planning delivery of solutions, answering technical and procedural questions for less experienced team members, teaching improved processes, mentoring team members
  • Plans security systems by evaluating network and security technologies, developing network requirements for networks and related security and network devices, implements public key infrastructure configurations (PKIs), including use of certification authorities (CAs) and digital signatures
  • Adheres to industry guidelines, best practices, and approved standards
  • Prepares system security reports by collecting, analyzing, and summarizing data and trends.
  • Automates everyday and/or repeatable tasks, including security control enforcement
  • Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.
  • Detect, track and manage threat actors.
  • Develop and implement tools to monitor and investigate threats, attacks and emerging trends.
  • Research and develop actionable solutions to complex technical problems from a cybersecurity perspective.
  • Assess threat data from internal and external sources.
  • Analyze activity and identify customer-specific security threats and work with engineering teams to mitigate risks
  • Develop security alerts, intelligence reports, assessments.
  • Work in a fast paced, and dynamic environment complementing
  • Experience working with Python or similar langauge.

Job Family

Information Technology

Company

Vistra Corporate Services Company

Locations

Royal Lane Office

Texas

We are a company of people committed to: Exceeding Customer Expectations, Great People, Teamwork, Competitive Spirit and Effective Communication. If this describes you, then apply today!

If you currently work for Vistra or its subsidiaries, please apply via the internal career site.

Job ID : 40006652

More Information

  • This job has expired!

Leave your thoughts

Share this job