Secureworks® (NASDAQ: SCWX) is a global cybersecurity leader that protects customer progress with Secureworks® Taegis™, a cloud-native security analytics platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

www.secureworks.com

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.  

Our People:

As we serve a global customer base and our mission is to secure human progress, the security expertise is essential to our business, that’s why we seek out the industry’s passionate and brightest minds to assess and understand the sense of urgency of the threat and to apply that research and experience across our operations, enhancing the security posture of the organizations that we are protecting.

“For us, mission really matters. So, if you want to work somewhere where you know that what you’re doing is making the world a safer place and if you want to be a part of the team of heroes that save those organizations, or frankly, prevent those cyberattacks from happening in the first place, I think the interest in this as a career path really starts to get a little more exciting” - CEO, Wendy K. Thomas

Role Overview:

We are looking for a Threat Engagement Manager that is a core component of the Secureworks® Taegis™ ManagedXDR service and his mission is to collaborate with our customers to ensure they fully benefit and understand the value of our service through periodic reviews of their security posture and to provide guidance and recommendations on how to defend against potential threats in their environment.

Work Remotely: You will have the option to work from the office or from home.

Your Interviewing Process: Online

You will:

• Participate in the customer onboarding process to understand the customer environment and how it applies to our services during the onboarding process
• Collaborate with customers to learn about established security controls within their environment and the value they will add to security event analysis within the Secureworks® platform
• Periodically meet with the customer to provide security guidance to develop and deliver strategic recommendations that will help improve their security posture
• Assist the customer in tuning recommendations to tailor services to their needs
• Provide customers insight into new detectors being deployed and how they improve security efficacy
• Maintain updated customer profile and pertinent information in internal operational support systems
• Research, evaluate, and stay current on emerging tools, techniques, and technologies
• Acts as a mentor, working side by-side with other colleagues in an advisory, support and training role

What you need:

• 4~5+ years of relevant experience or equivalent combination of education and work experience (bachelor’s degree or similar in Computer Science, Network Security, Information Security or another applicable field)
• Industry certification from vendors: ISC2, GIAC, EC-Council, Cisco, Juniper, CompTIA, Unix, Microsoft, Oracle, etc. (eg: CISSP, GCIA, GWAPT, GCIH, GCFA/GCFE, GREM, OSCP/OSCE)
• Strong communication skills to be able to deliver presentations in English (remote and in person) to large groups for metrics, analysis, threat landscape, observations/recommendations
• Experience with and strong understanding of:
  • Performing both endpoint and network-based investigations
  • Reviewing logs to identify evidence of past intrusions and the scope and breadth of attacks
  • Malware, exploit kit functionality, operating system and application exploits
  • Lateral movement, living-off-the-land and persistence establishment mechanisms
  • Threat hunting methodologies and detection of anomalous system activity
  • Incident response and incident handling processes