Security Incident Response Team Engineer - (Windows and Linux knowledge)

Who is Forcepoint?

Forcepoint simplifies security for global businesses and governments. Forcepoint's all-in-one, truly cloud-native platform makes it easy to adopt Zero Trust and prevent the theft or loss of sensitive data and intellectual property no matter where people are working. 20+ years in business. 2.7k employees. 150 countries. 11k+ customers. 300+ patents. If our mission excites you, you're in the right place; we want you to bring your own energy to help us create a safer world. All we're missing is you!

About the role:

Forcepoint is looking for a dynamic and motivated candidate to join our Product Security Incident Response Team (PSIRT) and Forcepoint's Enterprise Vulnerability Management Program. As a Forcepoint PSIRT Security Engineer you will drive the day-to-day response process by assessing and triaging incoming identified vulnerabilities, and vulnerabilities identified as part of our Enterprise Vulnerability Management Program. As a PSIRT Security Engineer at Forcepoint, you will work closely with product, software development and technical support teams to identify security issues, and closely work with the teams to diagnose, document, and remediate security vulnerabilities.

• Triage, assess, validate, and provide guidance in the management of inquiries of public and privately disclosed vulnerabilities by assisting in product security incident response activities.
• Communicate issues to the application and product owners and provide meaningful remediation recommendations.
• Drive security issues to resolution and validate that they have been resolved.
• Identify security gaps and collaborate with the Information Security team on process improvement opportunities.
• Conduct security tests and scans to identify potential vulnerabilities or improvement in security design or implementation.
• Build and maintain collaborative working relationships with various internal functional groups to drive organization initiative and security fixes.
• Develop, report, monitor and provide incident response metrics and dashboards.
• Support Security projects to improve Information Security Team or Forcepoint's security posture, through the development of tools and automation.

• 2-3 years of related experience with a Bachelor's degree in Computer Science, Information Security, Computer Engineering or related field.
• Experience working with the Forum of Incident Response and Security Teams (FIRST) organization.
• Experience working with Common Vulnerabilities and Exposures (CVE™) and Common Weakness Enumeration (CWE™) frameworks.
• Strong Windows and Linux knowledge.
• Strong customer focus and able to drive issues to closure.
• Working experience with the Atlassian tool set.
• Experience with one or more of security tools such as Kali Linux, Burp, Metasploit, Qualys, Nessus.
• Development and scripting experience with one or more of the scripting languages JavaScript, Python, Bash.
• Experience in automating vulnerability discovery and repetitive tasks.
• Knowledge of the Secure Development Lifecycle (SDL).
• A year or more working in a "work from home" / remote capacity.
• High level, written and verbal English communication skills to both technical and non-technical leaders.
• Ability and desire to work in a team environment.

• Master's degree in Computer Science, Information Security or Computer Engineering with 1-2 years of related experience.
• Strong desire to learn and continually improve security posture, process, procedures and related policies.
• Development experience in one or more of the programming languages and platforms such as Java, C/C++, Objective C, iOS, Android, Window, Mac.
• Knowledge in OS kernel is a plus.
• Organized and capable of executing complex plans with minimal direction.