Extended Expertise Consultant/Network Security Consultant - XPANSE/XDR

• The resource must have strong prioritization, organizational, and interpersonal skills. • They must be able to work decisively and efficiently under pressure. • The resource must communicate technical concepts and risks to stakeholders with little to no cybersecurity understanding. • Ability to work as a liaison/intermediary with multiple stakeholders. • Ability to report on platform adoption, Ability to communicate project status to stakeholders on a weekly or monthly basisXPANSE qualifications:• Familiarity with the Attack Surface Management or a related field in cybersecurity (eg, discovery methods, port scanning, vulnerability management, etc)• Professional experience in technical client delivery & engagement and/or technical intelligence analysis• Knowledge ofAdvanced Persistent Threat (APT) actors and their Tactics, Techniques, and Procedures (TTPs)• Experience applying threat hunting techniques to track attack patterns to malware variants to uncover previously undetected adversary behaviorAdditional Requirements:• Endpoint protection deployment, operationalization, troubleshooting, training experience• Experience as a Security Incident Responder or SOC analyst/manager• Experience in Python or JavaScriptJob Description:YourCareerThe Resident Engineer (newly branded Extended Expertise) is an integral part of our missionwithin ourProfessional Services team.As an Extended Expertise Engineer, you will workon-site/remote with our customer(s) supporting our mission to help them quickly and completelyadopt our End Pointy Platform, leaving them more secure. This is a highly technical, hands-onrole and you will develop and maintain expert-level skill sets on our products and solutionsdeployed within the customer's environment. Your ImpactLearn & understand the customer s business requirements and the threat landscape thatis most applicable to their industry s vertical sectorEndpoint protection deployment, operationalization, troubleshooting, training experienceExperience as a Security Incident Responder or SOC analyst/managerFamiliarity with cloud technologies, providers (bolthires Cloud Platform, AWS, Azure), use-casesQualifications:Your ExperienceProvide remote support to the customerFamiliarity with the Attack Surface Management or a related field in cybersecurity (eg.discovery methods, port scanning, vulnerability management, etc.)Professional experience in technical client delivery & engagement and/or technicalintelligence analysisKnowledge ofAdvanced Persistent Threat (APT) actors and their Tactics, Techniques,and Procedures (TTPs)Experience applying threat hunting techniques to track attack patterns to malwarevariants to uncover previously undetected adversary behaviorEndpoint protection deployment, operationalization, troubleshooting, training experienceExperience as a Security Incident Responder or SOC analyst/managerFamiliarity with cloud technologies, providers (bolthires Cloud Platform, AWS, Azure), use-casesTime to Value - Analyze customer requirements, provide guidance & assistancethroughout the customer lifecycle to ensure a quick and successful product deploymentProduct Expert - Act as the product SME, working together with product and engineeringteams ensuring our customers and partners get the most out of our productsDrive Product Adoption - Continuous contact with customers to expand adoption of ourproduct by utilizing new features and developing additional innovative use casesNetworking experience in TCP/IP, OSI Model, troubleshooting, analysisExperience in customer-facing rolesFamiliarity with machine learning and its various applications within cybersecurityFamiliarity with the different enterprise security and IT products, processes, andecosystemThreat hunting and detection engineering experience of tuning alerts, development ofcustom BIOCs, and development of correlation rules for new log sourcesExperience with log ingestion and parsing rules for XDRThe ability to develop and maintain scripts in Python or Powershell is a plusFamiliarity with XQL, SQL, or a query scripting languageExperience with SIEM tools, such as SplunkFamiliarity with XDR APIsBasic Linux system administration & troubleshooting experienceAbility to work under pressure and prioritize tasks accordingly Apply tot his job