Cyber Security Engineer

Cyber Security Engineer (SOC Tier 1) Job Description / Mexico

Who We Are

Solera is a global leader in data and software services that strives to transform every touchpoint of the vehicle lifecycle into a connected digital experience. In addition, we provide products and services to protect life’s other most important assets: our homes and digital identities. Today, Solera processes over 300 million digital transactions annually for approximately 235,000 partners and customers in more than 90 countries. Our 6,500 team members foster an uncommon, innovative culture and are dedicated to successfully bringing the future to bear today through cognitive answers, insights, algorithms, and automation.  For more information, please visit solera.com.

The Role
Cyber Security Engineer

What You’ll Do

Overview

SOC Analyst, serve as first line of defense in protecting's information systems from internal and external threats by conduct analysis of security events to include validation, escalation and reporting of events of interest based on the guidelines and event handlers provided. The SOC Analyst will be responsible for all events of interest and will make sure they are continuously monitored and reviewed.

Job Schedule: 24x7 shift environment.

Language requirements: English speaking, writing, and reading proficiency (85% at least)

Job Description Summary

Applies professional-level technical skill and judgment to provide non-routine technical support for computer/data center operations. Installs, configures, and troubleshoots server and non-desktop computer hardware, software, systems and other resources in a data center or other centralized computer network setting. Maintains access control, data integrity and file system security for the computer/data center environment. Monitors, tracks and records system detections.

Communicates highly technical information to both technical and nontechnical personnel. Recommends process, hardware, and software solutions, including new acquisitions and upgrades, to improve computer/data center efficiency. May participate in development of information technology and infrastructure projects. Survey Tip: May be internal or external, client-focused, working in conjunction with Professional Services and outsourcing functions. May include company-wide, web-enabled solutions.

Key Responsibilities:

Monitoring and analysis of cyber security events

Services monitored will include, but are not limited to SIEM, IDS/IPS, Firewall, Web Application Firewalls, Data Loss Prevention (DLP)

Security Event Correlation and Reporting to appropriate Tier 2 Security Analyst or Incident Response staff or relevant sources to determine increased risk to the business.

Recognize potential; successful; and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information.

Working with the Incident Response team to help create RCAs for events escalated to incident levels.

Development and execution of Standard Operating Procedures, Event Handlers and Job Aids required for successful task completion.

Actively participate in incident resolution, even after they have escalated.

Keep the ticket queue assigned.

Preferred Qualifications

Education

Bachelor’s degree or equivalent in computer science, computer engineering (preferred) or verified security training path (at least 8 months combined)

2 years’ experience within a security team, at least 1 year SOC experience is a MUST.

Technical qualifications

Security Operations Center (SOC) environment experience related SOC and incident monitoring experience a MUST

Experience with SIEM, IDS/IPS, Firewall, Web Application Firewalls, Data Loss Prevention (DLP) and Security Event Correlation.

Excellent analytical and problem-solving skills.

Experience with technical writing

Possess an understanding of security standards and risk management.

Possess the ability to adjust and adapt to changing priorities in a dynamic environment.

Be able to multi-task and be pro-active in addressing issues and requests.

Possess technical acumen and the ability to understand and interpret technical specifications.

Experience with one of the following security tools is a plus:

CrowdStrike

ExtraHop

Proofpoint

O365 Security

AWS security hub

Azure defender/ security center

Splunk

ELK

Soft Skills

Strong research skills.

Communication skills across multiple teams and team members in different countries.

Collaboration across multiple teams and team members in different countries.

Adaptability to the different platforms used withing Solera

Position Location: Remote in Mexico City.

It is impossible to list every requirement for, or responsibility of, any position.  Similarly, we cannot identify all the skills a position may require since job responsibilities and the Company’s needs may change over time.  Therefore, the above job description is not comprehensive or exhaustive.   The Company reserves the right to adjust, add to or eliminate any aspect of the above description.  The Company also retains the right to require all employees to undertake additional or different job responsibilities when necessary to meet business needs.