Use your LinkedIn profile to find the right job match for you.

Job Match
Skip to main content

Threat Detection & Response, Cybersecurity Operations Consultant - Secureworks - Remote

Remote - Texas, United States, Remote - Florida, United States;Remote - Georgia, United States;Remote - Kentucky, United States;Remote - New Jersey, United States;Remote - New York, United States (All Other);Remote - North Carolina, United States

Apply now
Job ID R043629 Date posted Nov. 05, 2019

Threat Detection & Response, Cybersecurity Operations Consultant - Secureworks - Remote

Secureworks® (NASDAQ: SCWX) is a technology-driven cybersecurity leader that protects organizations in the digitally connected world. Built on proprietary technologies and world-class threat intelligence, our applications and solutions help prevent, detect, and respond to cyber threats.  Red Cloak™ software brings advanced threat analytics to thousands of customers, and the Secureworks Counter Threat Platform™ processes over 300B threat events per day. We understand complex security environments and are passionate about simplifying security with Defense in Concert™ so that security becomes a business enabler. More than 4,000 customers across over 50 countries are protected by Secureworks, benefit from our network effect and are Collectively Smarter. Exponentially Safer.™

We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.   

Our business at SecureWorks is growing. We are looking for a Threat Detection and Response Cybersecurity Operations Consultant to join our team and assist our customers with developing, advancing, and designing Threat Detection and Response capabilities as part of their overall Security Operations. The ideal candidate will have demonstrated experience with threat detection and response and related security operations activities within evolving environments, with emerging talent and resources. The candidate must have the ability to interact with all levels of management within a customer’s security operations organization, including senior level executives; have strong leadership skills; be able to confidently address issues and communicate solutions; and must be willing and able to travel to domestic and/or international customer sites, as needed for customer-facing service engagements. Typical engagements will include customers with varying technologies, services, and desired outcomes for success, which requires the ideal candidate to have a versatile background within security operations. Candidates should be familiar with security services such as threat detection and response, vulnerability management, incident response, event monitoring, threat management, and other similar areas.

Key Responsibilities

  • Design and create Information Security processes (e.g., TDR, vulnerability mgmt., incident response, event monitoring, etc.)
  • Review and design according to substantive security controls, including corporate security policies, industry frameworks, and security frameworks 
  • Assist clients with the initial setup and onboarding of data sources into the Secureworks RedCloak TDR application and with the creation of custom use cases within RedCloak TDR
  • Provide training to clients on how to implement and use RedCloak TDR, based on Secureworks recommended best practices and lessons learned
  • In some cases, work with clients to establish virtual connectivity solutions for client who leverage our off-shore resources during a transition effort
  • Perform risk assessments for projects, and provide guidance to leadership on the appropriate course of action
  • Provide subject matter expertise and guidance to project teams on Threat Detection & Response
  • Lead the development of various components of the Secureworks proprietary security operations improvement framework
  • Lead meetings with executive level management to communicate proposed solutions and work efforts to improve their security operations  
  • Lead security operations advisory services, transformation and transition efforts with large teams and complex security challenges
  • Create security operations design documents that map workflows, roles, and technical task required to define a work stream and governance models and responsibility matrices to drive organizational focus, alignment, and understanding
  • Create executive and detailed reporting to provide an assessment with recommendations on how to improve security operations capabilities
  • Collaborate with client architects, legal, HR, engineers, specialist, and others to crate purpose-built recommendations and capability design based off desired needs
  • Collaborate with internal Dell SecureWorks teams to organize and create transformative deliverables for organizations with the desire to improve security operations capabilities
  • Understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53. Employees will be expected to acknowledge their security responsibilities in writing prior to gaining access to company systems. Employees will be required to maintain a working knowledge of local security policies and execute general controls as assigned.

Essential Requirements

  • Minimum of 5 years of experience implementing security solutions (Threat Detection & Response, IR, Vulnerability Management, Threat Management, Threat Intelligence, SIEM Management, Security Architects, etc.)
  • Minimum of 3 years of experience managing security operations

Desirable Requirements

  • BS or MS Degree in Computer Science or IT-related field, or equivalent career experience
  • Experience presenting to C level executives
  • Broad understanding of security technologies and industry frameworks (NIST, CSF, ISO 27001, ISO 27002, SANS)
  • SIEM architecture, SIEM deployment, SIEM troubleshooting, SIEM upgrades
  • Splunk ES & Core Splunk Experience
  • Enterprise clouds security best practices
  • Have one or more of the following certifications: CISSP, CISM, GIAC, CEH
  • Willingness to pursue advanced security training and certifications (CISSP, CISM, GAIC)
  • Proficiency in: automated project management tools such as Microsoft Project; analytical, organizational, project management, interpersonal and communication skills (verbal and written)
  • Excellent practical knowledge of more advanced concepts of threat management, incident handling, event monitoring, and vulnerability management in a large enterprise
  • Experience gained through working as an IT consultant
  • Experience acquired through working in a large IT environment
  • This is a remote position with up to 40% travel (U.S. and International travel)

We offer highly competitive salaries, bonus programs, world-class benefits, and unparalleled growth and development opportunities — all to create a compelling and rewarding work environment.

If you’re keen to work on diverse and highly complex information security problems, this is your opportunity to develop with Dell.

Secureworks (A Dell Technologies Company) is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.  Learn more about Diversity and Inclusion at Secureworks here.

Employees at work Explore This Location

Related Stories