VetJobs - The Leading Military Job Board

Job Information

Huntington National Bank Remote Cybersecurity Endpoint Protection Engineer in Carson City, Nevada


Brief Description:

Endpoint Detection and Response team is looking for a team oriented candidate who likes working in fast paced agile environment. The successful candidate is expected to provide technical and engineering expertise in EDR administration. The candidate will need to demonstrate their expertise in on provisioning, supporting, and ongoing maintenance of Cyber Security operating platforms, applications and services. The candidate will be expected to provide insights to identify, recommend and execute resolution for Malware and other EDR detected incidents. This role requires the individual to have the aptitude to learn and to participate in the provision of customer service for internal and external customers regarding Huntington’s security initiatives, incident response, and support. Successful candidate must be self-driven, organized and should be able to complete tasks on agreed upon schedules.

Primary Responsibilities:

  • Participate in the day-to-day security operations monitoring and response from the Cyber Security Operations Center.

  • Be able to analyze and identify malicious activity during the various attack stages.

  • Develop scripts using Python, Powershell or other scripting languages to automate time intensive tasks.

  • Maintain operational tasks/ticket queue by evaluating and managing tickets requesting policy exceptions.

  • Aid in the evaluation, design, and implementation of security related solutions, adhering to established change control processes.

  • Collaborate on agent deployment, health check and coverage sustainability

  • Responsible for developing and maintaining cyber security solutions.

  • Participate in the Security Architecture engineering programs and committees.

  • Collaborate with the Cyber Security Architectures and Operations teams

  • Facilitate meetings to review research and designs

  • Develop and update documentation to support new/changes to procedures

  • Participate in team’s project release efforts as assigned

  • Participate in the implementation of cyber security tools (hardware and software): able to research, evaluate, and devise course of action for security hardware/software and tools to make overall impact on the enterprise’s existing security environment.

  • Experience in participating and leading projects and implementing new technologies and solutions.

  • Maintain a high level of technical expertise on Cyber Security defense-in-depth technology and best practices by performing ongoing research and engagement to maintain awareness of industry trends, best practices.

  • Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cyber Security product suite, e.g. NGFWs, IDS/IPS, Anti-virus, EPP/EDR, Web Application Firewalls, etc…

  • Implement or recommend mitigations including the creation and development of new alerts and rules within the various cyber security tools.

Required Qualifications:

  • Intermediate knowledge of endpoint protection: Malware, AV, and EDR (Endpoint Detect and Response) experience

  • Intermediate knowledge of operating systems, e.g. Windows, Linux, & Unix

  • Intermediate knowledge of core networking protocols including BGP, DNS, HTTP/S, DNS, etc...

  • 3 - 7 years of production support and design of Cyber Security technologies

  • 3 – 7 years of operational experience with security technologies

  • 3 - 7 years of implementing or utilizing technology lifecycles and best practices

  • Experience with scripting languages (Batch, Powershell, JavaScript, Python, VBScript, etc.)

  • Intermediate level network troubleshooting skills utilizing packet capture/analysis packages such as Wireshark, TCPdump, etc…

Preferred Qualifications:

  • Excellent customer facing communication skills (both written and verbal)

  • Experience writing professional level documentation covering topics related to networking or application cyber security technologies. These include design and implementation documents, process documents, SLAs, etc.

  • Excellent leadership and interpersonal skills

  • Must be part of a rotational 24x7 on-call support team

  • Occasional travel may be required (<10%)

  • Industry or vendor recognized certifications such as certifications such as SANS, CISSP, and/or CISM.

Workplace Type:


EEO/AA Employer/Minority/Female/Disability/Veteran/Sexual Orientation/Gender Identity

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position