Posted:
8/30/2024, 2:37:26 AM
Experience Level(s):
Junior ⋅ Mid Level ⋅ Senior
Field(s):
Consulting
Workplace Type:
Hybrid
Job Title:
Solution ConsultantAbout Trellix:
Trellix is the cybersecurity company transforming security operations with artificial intelligence (AI), analytics, and automation to create a resilient digital world. Our market-leading AI-powered XDR Platform learns and adapts to disrupt active threats and empower CISOs with living security. The platform’s open architecture and broadest set of native security controls across endpoint, email, network, cloud, and data security integrates with over 500 third-party tools to create multi-vector, multi-vendor event correlation and context to speed up investigations. The Trellix Advanced Research Center provides an additional layer of protection by continuously informing the platform on the latest threat actor TTPs (techniques, tactics, and procedures) and recommendations from millions of global sensors. Trellix and an extensive partner ecosystem accelerate technology innovation and empower over 40,000 business and government customers to build confidence in the protection and resilience of their operations. Learn more at Trellix.com.
Role Overview:
This role will develop and deliver detailed IT solutions through consulting project activities.About the Role
About the candidate:
Understanding of cyber threats, attack vectors, detection capabilities, and associated countermeasures
Experience working in a Security Operations Center to monitor security alerts, respond and remediate detected issues is preferred
Clear understanding of organizational Incident Management processes in relation to threats and vulnerabilities
Maintain a deep knowledge of Trellix (formerly McAfee) Endpoint Security, Application Control/Change Control, ENS, TIE, DXL, DLP.
Knowledge and experience with Threat Hunting.
Experience in Windows, Mac, Linux OS and application hardening, including understanding artifacts and behaviors.
Experience with one or more scripting languages: Python, PowerShell, Go, C#, other command line scripting or similar is preferred.
You may have experience scripting API integrations with response and orchestration tools like SIEM, SOARs and/or XDR platforms
Experience with a SIEM tool and working with SIEM Analyst.
Experience with event correlation and analysis.
Demonstrated technical proficiency in cybersecurity operations, cybersecurity engineering, systems engineering
Experience with Virtualization (VMWare, Nutanix, etc.) and Cloud Services [i.e., AWS, Azure]) and enterprise networks.
Deliver onsite and remote security application/endpoint protection designs, implementations, training, and knowledge transfer for a wide variety of customers.
Be able to identify gaps in application and network security architecture and recommend strategies using a combination of industry-standard security best practices, software controls and other necessary changes to promote a higher level of information security practices.
Author formal reports, architecture designs, optimization guides, and best-practice white papers covering a variety of security topics.
Participate in conference calls, onsite meetings and roundtables with customers, sales, internal product development and support to gather data, scope new and existing work, evaluate or suggest new product features and assist in resolving existing product issues.
Recognize and generate potential product and consulting services sales leads when appropriate and necessary.
Detailed understanding of the TCP and IP protocol suites and ability to dissect and explain the contents of traffic and packets.
Experience with configuration of debugging, event generation, and logging functionality within the application and operating systems, using Syslog or flat-file generation.
Company Benefits and Perks:
We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.
We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.
Website: https://trellix.com/
Headquarter Location: San Francisco, California, United States
Employee Count: 1001-5000
Year Founded: 2022
IPO Status: Private
Last Funding Type: Venture - Series Unknown
Industries: Cyber Security ⋅ Information Technology ⋅ Network Security