Security Engineer

JOB DESCRIPTION

Summary

Based in North America/EMEA, the IT Security Operations Center Security Engineer is a position reporting to the Global Information Security Operations Manager with the responsibility to operate, design, plan, and implement improvements of the Adient IT Security tool set. Additionally, the analyst will support monitoring, detecting, triaging, and responding to security events and incidents. This position will also support developing and updating standard operating procedures, policy development, troubleshooting, ensuring best practices, responding to outages, and reporting information regarding the status of the tool and its integration points.

Primary Responsibilities

• Primary duties for this position include deploying, operating, and providing ongoing support to Adient's IT Security tool set.
• Work to continually improve tool capabilities, processes, and documentation utilized within the organization.
• Maintain and improve SIEM correlation rules and Endpoint Protection detection.
• Provide analysis and trending of security log data and network traffic.
• Generate leadership facing security reports based off identified KPI (key performance indicators).
• Integrate and share information with other analysts and other teams.
• Assist with creating security designs and configuring security controls within the Cyber Security Engineering portfolio.

Secondary Opportunities as time allows

This role is primarily based on IT Security Operations Center Security Engineer but there are other areas within the SOC (Security Operations Center) where individuals can learn and contribute to other teams and tools to include but not limited to the following:

• Provide technical assistance to incident response for security incidents and participate in company-wide incident response as needed.
• Validate security control coverage against identified IOCs (Indicators of Compromise) based on emerging cyber threat intelligence.
• Collaborate with the Security Operations team to analyze and evaluate the effectiveness of existing security controls against identified TTPs (Tactics, Techniques, and Procedures).
• Contribute to engineering initiatives to operationalize Cyber Threat Intelligence feeds and API (Application Programming Interface) integrations.
• Work with enterprise architects, network engineers, and developers to design optimal security practices for supporting new and existing business processes / applications.
• Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies.
• Conduct periodic security architecture reviews on existing security technologies to offer actionable recommendations for improvements and remediations where needed.
• Ability to work both independently and with internal teams in a project-oriented environment.
• Communicate technical application security concepts to business users, developers, architects, and managers.
• Participates in special projects as required.

Qualifications

The successful candidate will be a passionate information security professional with excellent technical skills and the ability to communicate with different business and IT leaders. The candidate will demonstrate drive, intelligence, maturity, and energy.

• A minimum bachelor's degree in Cyber Security, Network Security, Information Assurance, Computer Science discipline, or relevant work experience.
• 5 years of information security related experience, in areas such as: cybersecurity concepts, network protocols, firewalls, IDS/IPS systems, proxy, email security, endpoint security, network security, Windows/Linux/macOS systems, cyber threat hunting, cyber threat intelligence, common threat actor TTPs, application security concepts, cloud security fundamentals, Incident Response methodologies.
• Solid understanding of basic computer science including operating systems, networks, and tool development.
• Ability to think with a security mindset. The successful candidate has a strong IT background with in-depth knowledge of several key security practice area: security strategy, security architecture, network security, access control, application security, insider threat, kill chain analysis, risk assessment, and security metrics.
• Ability to quickly assimilate innovative technologies, tools, internal/external systems, and design frameworks. Strong and broad technology background.
• Experience with enterprise security management tools.
• Advanced knowledge of networking (TCP/IP, network layers).
• Experience generating and modifying network and host-based Indicators of Compromise (IOC).
• Moderate to Advanced knowledge of Windows and Unix or Linux.
• Knowledge of relevant frameworks, standards, and best practices such as NIST (National Institute of Standards and Technology) CSF, PCI-DSS, CIS (Center for Internet Security) Critical Security Controls, MITRE ATT&CK, Cyber Kill Chain, etc.
• Team member with good communication skills and the ability to communicate to technical and non-technical audiences at different seniority levels.
• Ability to create and maintain good business relationships with counterparts, customers, and external entities to achieve security operations management goals.
• Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters.

Desired Certifications (but not required):

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• GIAC Defensible Security Architecture (GDSA)
• GIAC Certified Detection Analyst (GCDA)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Certified Forensic Analyst (GCFA)
• Cisco Certified Network Associate (CCNA)
• Cisco Certified Network Professional (CCNP)
• Cisco Certified Network Professional Security (CCNP Security)
• Server Platform Certifications (Microsoft, Linux)
• Certified Information Systems Auditor (CISA)

Adient (NYSE:ADNT) is a global leader in automotive seating. With 75,000 employees operating in 208 manufacturing/assembly plants in 33 countries worldwide, we produce and deliver automotive seating for all vehicle classes and all major OEMs (Original Equipment Manufacturer). From complete seating systems to individual components, our expertise spans every step of the automotive seat-making process. Our integrated, in-house skills allow us to take our products from research and design all the way to engineering and manufacturing - and into more than 25 million cars every year. To learn more, please visit adient.com.

This job description indicates the general nature and level of work expected of the incumbent. It is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities required of the incumbent. Incumbents may be required to perform other related duties.

PRIMARY LOCATION

Central Tech Unit Plymouth MI