Sr Lead Managed EndPoint Security Engineer - Remote

About Lumen
Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumen’s network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at news.lumen.com, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies.

The Role

We are currently seeking a Senior Managed Endpoint Detection & Response of Information Security engineer, to join the Federal Security Operations organization.   As an Endpoint Detection and Response (EDR) Engineer, you will play a key role in supporting the design, deployment, configuration, optimization, and operation of a large-scale Endpoint Detection and Response (EDR) deployment solution or similar security products.  In this role, you will be a key member of a team that protects the world’s largest companies, governments, and millions of homes from advanced security threats – while maximizing our competitiveness in the market.  We are looking for a skilled, hands-on engineer with career interest in security and motivation to own the engineering testing, certification and design of Lumen security solutions.

The Main Responsibilities

• You'll work with cross functional teams to identify the right mix of processes and technology to implement solutions to support the needs of the internal and external customers.
• Continually work on the optimization of EDR and integrated solutions, including refinement data produced, development of automated workflows or playbooks, and integration of the EDR data with complementary security solutions, including SIEM, SOAR, etc.
• You will be responsible for establishing technical processes and tools focused on the incident response lifecycle.  Preparation; Detection and Analysis; Containment, Eradication, and Recovery; and Post-Event Activity.
• Security Product Engineering – Independently researches, evaluates, engineers, develops, troubleshoots, and supports solutions and infrastructure for the Federal Security Operations security portfolio, including endpoint security and integration with the IP network elements.
• Technical Documentation and Test Procedures - Defines and executes repeatable test procedures, creation of technical documentation and delivery of scalable standards for all implementation, provisioning and support functions.
• Solution Design - Responsibility for independent engineering design to include collaboration with the Security Architecture and Tier1 and Tier2 Operations staff on engineering design, testing and operational implementation of complex security solutions.
• Improve Existing Processes - Assesses security operational processes to identify opportunities to optimize, enhance and automate processes to achieve the greatest impact.
• Security Product Support - Ensure ongoing scale, management and monitoring of deployed solutions.
• Lifecycle Management - Define process and support all platform lifecycle management, to include the yearly audit functions, end of lifecycle platform, customer migration and equipment decommissioning functions.
• Vendor Relations - Develops partnerships with key equipment suppliers. Communicates requirements, guidance and vision to the vendor community to develop, implement and support security solutions.
• Demonstrate Company’s Values - maintains a positive open demeanor, encourages different points of view; provides timely information; communicates context for business decisions; fosters teamwork and collaboration.

What We Look For in a Candidate

Qualifications

• Must possess broad technical knowledge of current and emerging technologies used both within the service provider security, data center, cloud technologies and network infrastructure.
• Working experience with Managed Security Services platforms and solutions, such as Extended Detection & Response, Endpoint Detection & Response, SIEM integration, vulnerability scanning and reporting, e-mail security, key/certificate management, etc.
• Expert level knowledge of Managed Endpoint Detection and Response (MEDR) solutions.
• Development of custom tools and programs based on specified requirements.
• Experience with common computing platforms, including Windows Servers, RedHat & Ubuntu Linux Servers
• Experience with system, network, or security administration/engineering in a Unix-based environment 
• Experience using industry leading security solutions and technologies to deliver customer facing services:
• Access control and firewalls/UTM devices including SASE, Web Application Firewall (WAF), Web Content Filtering, Intrusion Detection and Prevention (IDS/IPS) systems, Remote Network Access (IPsec VPN, SSL), Anti-Virus and Anti-Spam (AV/AS), Email and Messaging Security, Managed End-point Detection and Response (MEDR), DNS firewall.
• Experience with integrated network architectures, data center architectures, and cloud technologies.
• Demonstrated working experience managing the Splunk event feed, indexing, processing and analytics infrastructure. 
• Must have excellent written and verbal communication skills to successfully interact as a member of the engineering team and effectively collaborate in a diverse, multi-functional department. 
• Experience working with government programs, employees, and contractors.
• 10+ years of progressively expanding responsibilities and experience in telecommunications, networking, technology management or security operations.
• Undergraduate degree in Computer Science, Engineering, or related field, or equivalent experience.

Preferred Qualifications

• Strong preference to candidates with CrowdStrike EDR and SOC (Security Operations Center) engineering and deployment experience 
• Working experience with SD-WAN and SASE technologies.
• Working experience with data center platforms, such as service provider edge/core devices, Ethernet switch platforms, load balancers, etc.
• Experience in application development/code assessment/reversing PHP, Python, UNIX shell, ELK
• Experience with automation tools such as Ansible, Salt, Puppet, Chef and working with various different types of APIs: REST, SOAP, etc.
• Professional/technical certifications, such as CISSP, CISM or CISA.
• Knowledge of project management practices and experience with agile development process.
• Strong understanding of DNS functionality.
• Understanding of technology lab testing strategies.

Requisition #: 323731

EEO Statement
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”).  We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

Disclaimer
The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.  Job duties and responsibilities are subject to change based on changing business needs and conditions.
 

Salary Range

Salary Min :

100440

Salary Max :

223680

This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors.

This position is eligible for either short-term incentives or sales compensation. Director and VP positions also are eligible for long-term incentive. To learn more about our bonus structure, you can view additional information here. We're able to answer any additional questions you may have as you move through the selection process.

As part of our comprehensive benefits package, Lumen offers a broad range of Health, Life, Voluntary Lifestyle and other benefits and perks that enhance your physical, mental, emotional and financial wellbeing. You can learn more by clicking here.

Note: For union-represented postings, wage rates and ranges are governed by applicable collective bargaining agreement provisions.

Salary Range

Salary Min :

100440

Salary Max :

223680

This information reflects the base salary pay range for this job based on current national market data. Ranges may vary based on the job's location. We offer competitive pay that varies based on individual experience, qualifications and other relevant factors. We encourage you to apply to positions that you are interested in and for which you believe you are qualified. To learn more, you are welcome to discuss with us as you move through the selection process.