Purpose

• Responsible for enabling the security team to proactively and preventively enable security teams through the value of threat intelligence analysis and dissemination.
• Based on this analysis, consider collecting all relevant actions and sharing them to prevent these threats from materializing.
• Responsible for communicating and sharing threats in relevant communities.

Responsibilities and Key Tasks

• In-depth threat and threat actor research.
• Management of alarms from monitoring and brand protection services.
• Administration and management of additions, deletions, configurations in monitoring platforms.
• Presentation of monthly findings from the services managed in the department.
• Document and share compromise indicators.
• Execution of attack simulations to validate advanced use cases in SOC monitoring technologies.
• Execution of Monthly Reports
• Execution of security bulletins, weekly and monthly.

Activities

• Proactive and on-demand investigations
• Execution and handling of cases escalated by the SOC team.
• Execution and handling of escalations by the DFIR team.
• Research and analysis on brand protection service alerts.
• Manage deactivation of sites, profiles on social networks. (Takedowns)
• Transfer and communication of findings to the client.
• Feeding intelligence tools, updating indicators.
• Share Intelligence information.
• Execution of attack simulation activities for Use Cases.

Desirable Experience

• In analytical, research roles or in specific positions in the Threat Intelligence sector.
• In creating threat profiles and risk assessment to prioritize security actions based on intelligence analysis.

Desirable Certifications

• CompTIA Security+
• Certified in Cybersecurity ISC2
• Ethical Hacking Essentials (EHE)
• Network Defense Essentials

Required English Level: Intermediate

Location: Guatemala

Skills:

• Manage and monitor the various regional and local servers of SISAP;
• Register and determine estimated impact of detected incidents, and respond to incidents on these equipment;
• Attend requirements from Security Committee, General Management, Engineering, CERT, RIF, and SOC, according to authorized maintenance windows.

Technical Functions:

• Administration of physical and virtual servers
• Management of Windows and Linux Operating Systems
• DHCP Management
• DNS Management
• GPO Management
• Server health status monitoring. Server capacity management

Services

• User management in LDAP (Active Directory)
• Email account management (Exchange)
• NVR and DVR management
• Corporate backup management

Networks

• Administration of communication services and equipment:
• Firewall: Policy Management, VPN
• Switches and Routers, Access Points
• Internal Support
• In case of security or physical incidents
• Management for the continuity, availability of the infrastructure supporting the services

Administrative Functions:

• Responsible for safeguarding license usage, expiration dates, administrative users of the various assigned servers and services;
• Responsible for validating the correct backup and restoration feasibility of server and assigned services;
• Responsible for trend analysis, server behavior, recording and reporting findings according to the escalation process defined in the service;
• Perform all necessary daily tasks including registration, reports, and monitoring;
• Ensure the provision of services with quality and professionalism in service management in compliance with defined OLA/SLA;
• Compile both internal and external data to contribute to incident reports and subsequent action analysis reports;
• Documentation in ticket system of processes, actions taken during work shifts;
• Act as a liaison between Engineering or Provider, if support is required for SLA sustainability;
• Contribute to continuous improvement of incident response processes and procedures;

Knowledge:

• Knowledge in Windows and Linux Operating Systems
• Knowledge in Microsoft Outlook, SharePoint, and SQL
• Fundamentals of networking knowledge (TCP/IP, network layers, Ethernet)
• Knowledge of malware operation and Antivirus

Personal Qualities in the Role:

• Deductive reasoning and critical thinking
• Abstract thinking
• Can communicate with various groups with very different requirements
• Responds appropriately to frustrating situations
• Comfortable with log analysis and configuration management

Experience:

• 3-6 years of server infrastructure experience
• Proven experience in:
• Server Management and Configuration:
• System Hardening
• Network Device Management
• Vulnerability Assessment
• Incident Response

Technical English (written and spoken) – Required

Work Schedule – Monday to Friday – On Call as per work plan

As a Technical Support Engineer provides remote support to customers through different channels like web, email, chat, phone and other as needed. Able to research, diagnosis, troubleshoot and resolve issues while properly managing customer expectations.

Where?

Open for Guatemala, El Salvador, Nicaragua, Honduras, Mexico, Colombia, Peru or Argentina.

Responsibilities:

• Perform remote customer support.
• Install and configure applications.
• Monitor and maintain a platform and/or software product.
• Maintain effective communication with customers through different channels like web, email, and phone.
• Maintaining procedural documentation and reports.
• Ability to learn and work on changing technologies.
• Establish and maintain good working relationships with customers and other professionals.

Qualifications and Experience:

• BS/BA degree in a technical field, or equivalent experience. 
• Strong focus and dedication to customers.  (Must Have)
• Effective written and verbal communication and interpersonal skills. (Fluent in English) (Must Have)
• Strong analytical approach for diagnosing and troubleshooting to resolve technical problems and issues. 
• Strong troubleshooting, diagnosing skills to resolve technical issues. 
• Familiar with Cloud platforms (i.e. AWS GovCloud, CloudOne). 
• Hands on admin experience with Linux and Windows based servers. (Must Have)
• Scripting knowledge using python, JavaScript, Perl, tcl and or any other similar technologies including regex. 
• Hands on experience with database and/or big data query languages (i.e SQL, SPL, Linq)