Threat Level: green Handler on Duty: Russ McRee

SANS ISC: InfoSec Jobs InfoSec Jobs

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
OSINT Automation Engineer
Company Fortress Information Security
Location Orlando, FL
Preferred GIAC Certifications GPYC, GSEC, GPEN, GCIH
Travel 0%
Salary Not provided
URL https://careers.fortressinfosec.com/#/jobs/158
Contact Name Stefani Rodriguez
Contact Email srodriguez/at/fortressinfosec.com
Expires 2020-11-24

Job Description

Why work at Fortress?

Fortress Information Security is one of the largest cyber security providers of supply chain risk management and vulnerability risk management in the US. Fortress has been recognized as one of Orlando’s 2019 Best Places to Work and has also been recently published for our efforts in securing the US power grid in Forbes and countless other publications.

Our mission is to secure critical infrastructure by managing supply chain risks. The Fortress team consists of experts in the field of cyber security who are recognized leaders on industry best practices and processes. Fortress is headquartered in Orlando, FL, with offices in Boise, ID, Reston, VA, and Columbus, OH.

Fortress Information Security is looking for an Open Source Intelligence (OSINT) Automation Engineer to act as a hybrid Python developer with domain security expertise, particularly as it relates to Continuous Monitoring and Supply Chain Threats. You will work in a fast-paced environment, in constant communication and coordination with software architects, project leaders, external customers, and senior management to build and deploy world-class information security solutions.

Responsibilities:

Develop and support the OSINT Data QA interface for the Fortress VSOC team
Optimize existing toolset and develop new OSINT tools. Python is the team’s language of choice, though flexibility is given for unique challenges that require new approaches
Manage the Fortress toolset used for collection and organization of data
Provide development support for reporting needs
Provide automation support for VSOC process areas
Liaison with Fortress development teams for related development projects as the primary SME
Execute tool-based scanning and manual evaluation of suppliers as part of Fortress Supply Chain Continuous Monitoring
Function as a SME for OSINT tools, both open source as well as commercial
Function as a SME for various data sources and their utilization within the Fortress Continuous Monitoring process
Investigate and present operational and strategic intelligence about threat actors.
Evaluate tools, methodologies, and best practices to effectively understand the tactics, techniques, and procedures (TTPs) utilized by threat actors.
Leverage IT Security tools in the evaluation of vulnerabilities/risks
Evaluate risk and report to Manager on the security of the infrastructure
Advise on technical security decisions regarding configuration and settings of security tools according to industry best practices and corporate policies
Review & recommend secure network, server, and application configurations and solutions
Qualifications:

Expert in Python, R or SQL - Minimum 2+ years Expert in Microsoft Excel – Minimum 2+ years
Expert in OSINT techniques and tools – Minimum 2+ years
Experience in automating and streamlining data collection
Intermediate knowledge of SQL and data warehouse technologies
OSINT investigative skills and data correlation
Networking experience with at least 2 of the following: LAN, WAN, MAN, Wi-Fi
Working knowledge of Internet Protocols, communication protocols, data and network security fundamentals
Intermediate understanding and knowledge of encryption techniques, tools, and best practices
Working knowledge of distributed server secure configurations and benchmarks
Working knowledge of basic Software Architecture design & methodologies
Working knowledge of supply chain threats
Experience performing IT risk assessments, including on networking infrastructure
Ability to work effectively in a distributed team environment
Well-developed analytical and problem-solving skills
Nexpose, Nessus or Qualys Scanner Experience (OR other enterprise Scanner tools)
SCAP tools: 1-3 years (Preferred)
Ability to be an intellectually curious self-starter, with ample opportunities to explore, research, and develop new and unique solutions.
Ability to work under demanding deadlines
Ability to think critically with an attention to detail
Strong written and oral communication skills
Education:

Bachelor’s, Associates in computer science or Cyber Security/ Information Security or 1-3 years relevant experience
OR

Bachelor’s, Associates, or 2nd in Electronics Technologies, Digital Electronics fundamentals, or Electrical/Electronic Engineering.
Preferred Licensing/Certifications:

CompTIA Security+ or
Cyber Security Analyst + (CySA+) (in lieu of Sec+) or
Offensive Security Certified professional (OSCP) (nice to have)
GIAC certifications (nice to have)
Fortress offers an attractive benefits package including:

Medical/Dental and Vision Benefits
Company-paid LIfe/STD/LTD
Paid Time Off
Company Holidays
401k plan
Employment Perks:

Free Snack and Drink bar including Chick-Fil-A® breakfast every Wednesday
Great Ongoing Learning and Development opportunities offered for certifications and tuition reimbursement
Employee Referral Programs
Company Sponsored Events
Casual dress daily
We promote from within and provide great employee succession planning
Fortress is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law.

For positions located in the US, the following conditions apply. If you are made a conditional offer of employment, you will be required to undergo a drug test. ADA Disclaimer: In developing this job description care was taken to include all competencies needed to successfully perform in this position. However, for Americans with Disabilities Act (ADA) purposes, the essential functions of the job may or may not have been described for purposes of ADA reasonable accommodation. All reasonable accommodation requests will be reviewed and evaluated on a case-by-case basis.