Security Operations Engineer

About MasterControl:

MasterControl Inc. is a leading provider of cloud-based quality and compliance software for life sciences and other regulated industries. Our mission is the same as that of our customers to bring life-changing products to more people sooner. The MasterControl Platform helps organizations digitize, automate and connect quality and compliance processes across the regulated product development life cycle. Over 1,000 companies worldwide rely on MasterControl solutions to achieve new levels of operational excellence across product development, clinical trials, regulatory affairs, quality management, supply chain, manufacturing and postmarket surveillance. For more information, visit www.mastercontrol.com.

Summary

Come and own the technical direction of MasterControls security posture. Working closely with the CISO and Chief Architect to create effective and comprehensive security controls. Tools are only as good as their masters, own the toolchain! Help implement and tune cloud native tool sets to Identify, Protect, Detect, Respond, and Recover from critical threats.

Responsibilities

• Take the lead in engineering, architecting and deploying security operations tools and processes
• Proactively identify, troubleshoot, and mitigate vulnerabilities and provide metrics for reporting.
• Participate in incident response, threat modeling,threat intelligence gathering and analysis, and threat hunting
• Help expand defense-in-depth security for the organization to protect critical IT assets and data from internal and external threats.
• Assist in the development, execution, and enforcement of security processes, policies, and procedures
• Monitor computer networks for security issues.
• Investigate security breaches and other cyber security incidents.
• Document security breaches and assess the damage they cause.
• Monitor and track known vulnerabilities in our applications and infrastructure.
• Work with teams to fix the vulnerabilities in their respected areas
• Work with the security team to develop company-wide best practices for security.
• Research security enhancements and make recommendations to management.
• Stay up-to-date on information technology trends and security standards.

Preferred Skills

• Experience with Kubernetes ecosystem tools like – Prisma, Aqua, StackRox, Clair, Anchore, Vault, Calico, OPA, Istio, Envoy, Prometheus, Fluentd, Operator Framework
• Understanding of DNS, firewalls, proxies, WAFs, SIEM, antivirus, and IDPS concepts.
• SIEM – threat detection / Incident mgmt. / collection & analysis of events (Splunk, IBM Qradar, OSSEC, )
• WAF – protect Web Server from XSS, Field Manip, L7 DoS attacks, Overflows, Injections
• Ability to identify and mitigate vulnerabilities and explain how to avoid them.
• Experience in network administration and security.
• Experience in Web Application security and OWASP Top 10 knowledge.
• Experience in UNIX/Linux operating systems administration.
• Experience with configuration management tooling.

Physical Demands And Working Conditions

• Must be able to work well with people.
• Ability to operate a computer and work at a desk for extended periods of time.
• Ability to communicate effectively in writing, in person, over the telephone and in e-mail.

Why Work Here?

#WhyWorkAnywhereElse?

MasterControl is a place where Exceptional Teams come together to do their best work. In fact, hiring Exceptional Teams is a core value of ours. MasterControl employees are surrounded by intelligent, motivated, and collaborative individuals. We like to call it #TheBestTeamOnThePlanet.

We work hard to develop and challenge our employees' skillsets, recognize their contributions, encourage professional development, and offer a one-of-a-kind culture. This is why we say #WhyWorkAnywhereElse?

MasterControl could be your next (and last) career move!

Here are some of the benefits MasterControl employees enjoy:

• Competitive compensation
• 100% medical premium coverage (yes, you read that right!)
• 401(k) plan with company match
• Generous PTO packages that increase with tenure
• Schedule flexibility
• Fitness clubs (you get paid to have fun and be active!)
• Company parties and employee recognition programs
• Wellness programs (free Fitbit, gym membership and athletic shoe reimbursements, etc.)
• Onsite physician and massage therapist
• Innovation center and gaming rooms at the office
• Dental/vision plans
• Employer paid life insurance policy
• Much, much more!

Applicants must be currently authorized to work in the United States on a full-time basis.