Associate Systems Engineer ( Information Security )

Summary

To deliver desired, sustainable business outcomes and assure the integrity and continuity of our systems. This position is responsible for the development, maintenance, and support of AutoZone's security hardware, software and/or security systems. This includes acquiring domain expertise, supporting the customers, resolving problems, and training as required.

Responsibilities:

Participate in any and potentially all roles of the security systems development life cycle. Roles may vary by project and assignment. This may include, but not limited to:

• Responsible for technical design and administration of security controls, services, and architecture, e.g. infrastructure and / or network systems, application security tools and processes, identity and access management technologies, and /or incident response functions.

• Identify security concerns and mitigating controls; identify, document, and manage risks to AutoZone data, systems, and processes.

• Accurate work planning and execution; accurate project and time tracking.

• Learning and acquiring security subject matter expertise

Requirements:

• Bachelor's degree in Computer Science or related field

• Typically requires one to five years' security and / or cyber risk management experience in a mid- to large-enterprise environment

• Basic task estimation, planning and execution skills

• Basic problem solving, domain technical and analytical skills

• Basic system design and implementation skills

• Basic knowledge of one of the following functional areas:

• IT Security Operation Center (SOC) activities, responsibilities, and processes.

• Implementing, managing, and operating both detective controls and SIEM technologies used to identify malicious activity and prioritize response actions.

• Tuning detective controls and SIEM systems to improve alert fidelity and minimize false positives.

• Security incident response activities.

• Designing and managing corrective actions to reduce the possibility of future compromise and restore business functions to a secure operational state.

• Threat hunting, intel processing, and forensics