June 16, 2016

EPO Application Engineer

Role Summary:

As EPO Application Analyst for the Security Operations Centre (SOC), you are a member of a team which manages IT security on behalf of customers to reduce the impact of security incidents and system compromises. This team provides security EPO support, event investigation and analysis, and countermeasure proposals. As part of the team responsible for the 24×7 Security Event Management Service, you will be responsible for the following items:

Primary Responsibilities:

EPO Administration

  • Provide system administration and maintain operations of EPO servers.
  • Asset tag all systems as needed.
  • Implement EPO migration/compliance strategy.
  • Monitor system health, Troubleshoot EPO product issues and outages.
  • Administer ePO tree structure management.
  • Administer policy and host catalog management
  • Resolve ePO server (O/S, ePO, or SQL) issues.
  • Daily maintenance, such as testing and installing virus definition files
  • Maintenance of file / folder scan exclusions
  • Incident and problem resolution
  • Reporting and metrics
  • Test and install operating system patches on anti-virus / anti-malware servers
  • Download, test, and install application patches
  • Perform routine application upgrades (Complex upgrades will be designed, tested, and approved by the Local customer.)
  • Updating and/or installing the anti-virus / anti-malware clients
  • Responses to audit requests or findings
  • Create detailed documentation for change management in relation to EPO.
  • Transfer to other Herjavec Group Employees or client personnel as assigned by manger
  • Provide rotating on-call support and after hour Security Event monitoring and response under a 24/7 Security Operations environment
  • Creates and maintains detailed documentation based on existing process and procedures for any EPO related activities.
  • Other duties as assigned

Secondary functions

  • Serve as a backup subject matter expert for one or more of the following technologies: Intel McAfee ESM, NSM, ELM, ATD, HIPS,HIPD, VSE, TIE, ACE, DLP, Application Control, Global Threat Intelligence, Move, and End point for MAC, Fire Eye, Etc
  • As a back up administrator of one or more of the above technologies, the following will be required:
  • Provide system administration and maintain operations of the Security Technology while Maintaining appliance agent deployment at or above 98% host saturation.
  • Monitor system health, troubleshoot product issues and outages.
  • Resolve appliance operating system issues as needed.
  • Preform daily maintenance, such as testing and installing patches, updates, hotfixes as needed.
  • Reporting and metrics as needed.
  • Download, test, and install application patches as needed.
  • Perform routine application upgrades (Complex upgrades will be designed, tested, and approved by the Local customer.)
  • Responses to audit requests or findings.
  • Transfer knowledge to other Herjavec Group Employees or client personnel as assigned by manger as needed
  • Monitor reported information security events on a daily basis using Splunk, Sumo-logic, and NSM while ensuring critical events are escalated within customer SLA agreement and documented in order to quickly respond and protect against threats to the organization’s information assets
  • Perform security log analysis during Information Security related events, identifying and reporting possible security breaches, incidents and violations of security policies
  • Effectively liaise and communicate with the Remote Global Monitoring Security Operations Centers, key business stakeholders and management regarding information security incident events and trending

Technical Requirements:

Must have demonstrated knowledge and experience with three or more of the following:

  • UNIX, AIX & Solaris
  • Linux
  • Windows Server Operating Systems
  • Internet Connectivity and Protocols (TCP/IP)
  • Wireless Networking
  • Network architecture best practices
  • Security Operations Centre/Information Protection Centre/Computer Incident Response Centre
  • Enterprise Security Information Management systems
  • VPN Communication Protocols
  • Switches/Routers (basic configuration)
  • Network/System Intrusion Detection or Prevention Systems
  • Understanding of basic security concepts: Principle of Least Access, Compartmentalization etc.
  • Firewall (configuration knowledge)
  • Asset Management
  • Security threat and attack countermeasures

Non-Technical Requirements:

  • Critical Thinking and Analytical skills
  • Excellent written and verbal communication skills
  • Strong troubleshooting and problem solving skills
  • Team player with ability to work autonomously
  • Ability to prioritize, and reprioritize work as required

How to Apply

If interested, please click on the following link and complete an application EPO Application Engineer – Click Here

About Herjavec Group:

Dynamic IT entrepreneur Robert Herjavec founded Herjavec Group in 2003, and it quickly became one of North America’s fastest-growing technology companies. Herjavec Group delivers managed security services globally supported by a state-of-the-art, PCI compliant Security Operations Centre (SOC), operated 24/7/365 by certified security professionals. This expertise is coupled with a leadership position across a wide range of functions including compliance, risk management & incident response. Herjavec Group has offices globally including three headquarters in Toronto (Canada), New York City (USA) and Reading (United Kingdom). The organization recently entered the Australian market and plans to establish a local presence there over the coming months.