Senior Linux Engineer

Brooksource is looking for a Sr. Linux Engineer to join our local Fortune 150 Energy Client in Charlotte. The Cybersecurity Systems Engineer will be assisting with the implementation and support of Carbon Black Endpoint Detection & Response (EDR) technology in critical environments.As one of the largest electric power holding companies in the United States, providing electricity to 7.7 million retail customers in six states, the have approximately 51,000 megawatts of electric generating capacity in the Carolinas, the Midwest and Florida – and natural gas distribution services serving more than 1.6 million customers in Ohio, Kentucky, Tennessee, and the Carolinas.This energy client is transforming our customers’ experience, modernizing our energy grid, generating cleaner energy and expanding our natural gas infrastructure to create a smarter energy future for our customers.The Sr. Linux Engineer will be a key contributor accountable for support, maintenance and deployment of Endpoint Protection tools utilized to detect, monitor, and control cyber security events and incidents across the Duke Energy critical infrastructure operations and corporate environments. The Analyst will work closely with peers, operations, business areas, other internal/external teams, and management in a 24x7 cybersecurity engineering and support environment ensuring Cyber Security Operations, and the confidentially, integrity, availability, and regulatory compliance of Duke Energy’s computing environments. The Sr. Cybersecurity Systems Engineering Analyst is expected to build positive and collaborative relationships with stakeholders across the company, identify ways to improve working relationships across organizational boundaries through collaborative planning and communicates clearly, candidly, and openly. The Analyst is also responsible for following processes and procedures as defined by Cybersecurity leadership, NERC CIP Compliance, and the Cyber Incident Response Team (CIRT).Key responsibilities to include:• Support cybersecurity systems in a highly regulated NERC CIP environment• Implementation, support, and maintenance of endpoint security products in a large enterprise environment – products such as Carbon Black EDR, McAfee, and Microsoft Defender, etc.• Implementation, administration, support, operation, and maintenance of endpoint security products in a large enterprise threat environment• Provide high level of support to Security Operations and Support teams for all products that make up the endpoint security tool set.• Systems experience in cybersecurity engineering and support, preferability with Endpoint Detection and Response, Firewall, SIEM technology, logging, and the full complement of cybersecurity products related to visibility and defense of endpoints and networks• Perform supporting tasks such as system hardening, high availability configurations, and developing backup strategies.• Assist with the creation of detailed deployments plans, architectural drawings, and operation manuals.• Develop processes, procedures, and documentation to ensure reliable system operations and NERC CIP regulatory compliance.• Review current reporting and compliance goals and verify reports to ensure they are meeting goals.Basic/Required Qualifications:• Bachelor’s degree preferably in Cybersecurity, Information Security, Computer Science, Management information Systems, or other closely related degree with high level understanding of network and application security and information systems, or equivalent experience.• 4+ years of experience in Cybersecurity fields, or roles focused on cybersecurity or IT functions• In lieu of Bachelor’s degree(s) AND five (5) years minimum related work experience listed above, 6+ years Cybersecurity and/or IT-related experience; military information security and/or system administration roleDesired Qualifications:• 4+ years of Cybersecurity experience in a security operations center with strong understanding of Cybersecurity frameworks, incident and security event management, and endpoint security / antivirus products• Engineering, support, and deployment experience in Linux and application hosted on Linux hosts.• Design, develop, implement, and troubleshoot infrastructure and application monitoring and reporting through BASH and or PowerShell scripting• Strong knowledge of Linux scripting languages, such as Python, Ruby, and Perl• Create and support test automation frameworks in collaboration with team members of other IT departments• Maintain software repositories and apply software updates• Maintain documentation for procedures, configurations, and programs• Engineering, support, and deployment experience in Endpoint Detection and Response (EDR), preferably with Carbon Black EDR• Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings and provide briefings to various levels of staff / management.• Ability to work in high pressure situations and within a team environment.• Experience with writing and editing technical documentation and operational procedures.• Demonstrated effective problem solving & analytical skills• Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies• General networking understanding and/or experience to include Understanding of TCP/IP communications & knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB• Windows and UNIX/Linux command line scripting experience and programming experience.• Demonstrated understanding of the life cycle of cybersecurity threats and tools used to mitigate risk.• Demonstrated Skill in protecting a network against malware. (e.g., NIPS, anti-malware, restrict/prevent external devices, spam filters).• Experience with the maintenance, configuration and operation of Cybersecurity tools related to both on premise and cloud environment, mainly on premise• Experience with forensics and malware analysis concepts and methods.• Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain.• Possession of multiple industry standard certifications such as RHCE, RHCA, RHCSA, CompTIA Linux+, LFCS, LPIC-(1, 2, or 3).• Possession of multiple industry standard certifications such as SANS GIAC/GCIA/GCIH/GCFA, CISSP, CISA, CISM, etc. or other network / system security certifications.• Familiar with Energy Delivery, Energy Management & Process Controls business functions.• Experience with NERC CIP or other regulatory compliance frameworks• Understanding of Operational Technology (OT) environments supporting ICS and SCADA systems• Strong understanding of Cybersecurity frameworks• Understanding of cybersecurity standards such as NIST CSF, NIST 800-53r5, NIST 800-82r2, ISA/IEC 62443, and ISO 27001• Familiarity or experience with the Cyber Kill Chain® methodology and MITRE ATT&CK framework• Innovative – ability to recognize and seek improvement and efficiency opportunitiesAdditional Details:• Location: Charlotte, NC• Hybrid position (2-3 days/week on site, remainder remote)• 12-month W2 contract position with strong potential for extension or full-time conversion• Daily schedule: Monday-Friday, 8:00 AM - 5:00 PMEight Eleven Group provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, national origin, age, sex, citizenship, disability, genetic information, gender, sexual orientation, gender identity, marital status, amnesty or status as a covered veteran in accordance with applicable federal, state, and local laws.