Information Security Engineer

Information Security EngineerEquinix is the world’s digital infrastructure company, operating 240+ data centers across the globe and providing interconnections to all the key clouds and networks. Businesses need one place to simplify and bring together fragmented, complex infrastructure that spans private and public cloud environments. Our global platform allows customers to place infrastructure wherever they need it and connect it to everything they need to succeed.At Equinix, we help the world’s digital leaders scale with agility, speed the launch of digital services, deliver world-class experiences, and transform people’s lives. Our culture is based on collaboration and the growth and development of our teams.   We hire hardworking people who thrive on solving challenging problems and give them opportunities to hone new skills, and try new approaches, as we grow our product portfolio with new software and network architecture solutions. We embrace diversity in thought and contribution and are committed to providing an equitable work environment. that is foundational to our core values as a company and is vital to our success.Job SummaryMid-level InfoSec Engineer with experience in IT security areas including applications, systems and network. May also have experience in audit, compliance and governance.ResponsibilitiesMonitor, investigate, respond to security incidents following the NIST SP800-61 frameworkCreate security incident reports to document detections, findings and remediations performedPerform in-depth investigation to identify file, URL, or email rating from reputation servicesPerforms in-depth analysis on malware samples.Perform static and/or malware dynamic analysis on suspicious files/URLsPerform static and dynamic analysis on malware found during IR and be able create a narrative of the Cyber-Attack ChainServe as escalation contact for complex malwareLead the reverse-engineering group analyzing complex malware the team handlesHunt for known and unknown threatsProvide detailed forensics investigation report on security incidents to document detections, findings and remediations performedManage the virtual machines used by the team for analyzing email and file samples.Write PowerShell and python scripts to improve the team’s efficiency in responding to threats via automation.Contribute in setting up the company’s SOAR platformPerform proof-of-concept on latest security technologiesTune security tools to improve detection and responseAutomate Incident Response tasks for efficiencyWork with IT team members to identify requirements, and develop processes, procedures, communications strategies and standards for Information Security operations.Utilize logs and analysis tools to assist in Cyber threat detection and incident response activities as required.Provides advice and guidance to users and cross IT functions on the best Information Security practices.Assist with monthly internal anti-phishing awareness and training program.· Partner with InfoSec teams (threat intel, security engineering, pen testing) to improve the company’s security policies, processes, and technologies.Train teammates in reversing engineering malicious scripts and executable files.Present at internal events to improve the company’s cybersecurity awarenessDemonstrate problem solving skills that contribute towards the resolution of any issues that arise. Document solutions, processes, or procedures and present them in writing, verbally on the phone or in person.Recommends implementation of countermeasures or mitigating controlsWork in a 24/7 environmentQualificationsCollege degree in computer science, data communications, electrical or computer engineering or an equivalent combination of course work and experience.At least 5 years working experience in the SOC or Cybersecurity-relatedAt least 2 years developing ServiceNow SIR playbooks and custom scriptsCurrent Security+, CySA+, ECIH or CHFI certification is preferrableProficient in malware reverse-engineering analysisProficient in the Att&ck Mitre frameworkFamiliarity in the current threat landscapeDisplay in-depth knowledge of security systems and the life cycle of network threats, attacks, attack vectors, and methods of exploitation.Strong understanding of key security concepts on network segmentation, access management, vulnerability & patch management, SIEM, encryption, data security loss prevention, intrusion detection and prevention systems, anti-malware/virus, defensive threat hunting, email securityStrong understanding of Network Infrastructure and ProtocolsStrong Knowledge of and ability to administer scripting languages: PowerShell, Python, Perl, PHP, BashProficient in utilizing Microsoft flow to automate SOC daily investigation tasksUnderstanding of diverse Operating systems such as Windows, Unix-based OS’ (to include AIX, Linux flavors, and MacOS)Proficient in using various sandboxing, triage, malware reverse-engineering toolsProven ability to make important decisions independently and multi-task under pressure, responding quickly to changing situations in complex environments without compromising qualityEquinix is committed to ensuring that our employment process is open to all individuals, including those with a disability. If you are a qualified candidate and need assistance or an accommodation, please let us know by completing this form.Equinix is an Equal Employment Opportunity and, in the U.S., an Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to unlawful consideration of race, color, religion, creed, national or ethnic origin, ancestry, place of birth, citizenship, sex, pregnancy / childbirth or related medical conditions, sexual orientation, gender identity or expression, marital or domestic partnership status, age, veteran or military status, physical or mental disability, medical condition, genetic information, political / organizational affiliation, status as a victim or family member of a victim of crime or abuse, or any other status protected by applicable law.