Descriptions & Requirements
This position requires access to or use of information which is subject to export restrictions, including the International Traffic in Arms Regulations (ITAR). All applicants for this position must be “U.S. Persons” within the meaning of the ITAR. “U.S. Persons” include U.S. Citizens, U.S. Lawful Permanent Residents (i.e. 'Green Card Holders'), Political Asylees, Refugees or other protected individuals as defined by 8 U.S.C. 1324b(a)(3)’.
We Are:
At Synopsys, we’re at the heart of the innovations that change the way we work and play. Self-driving cars. Artificial Intelligence. The cloud. 5G. The Internet of Things. These breakthroughs are ushering in the Era of Smart Everything. And we’re powering it all with the world’s most advanced technologies for chip design and software security. If you share our passion for innovation, we want to meet you.
You Are:
You are a dedicated and experienced Info Security Operations Engineer with a deep understanding of incident response and cyber security. You have a proven track record of managing complex security incidents and possess a robust technical knowledge of various network protocols, security tools, and cloud environments. Your expertise extends to understanding and applying security frameworks such as MITRE ATT&CK and NIST Cyber Security Frameworks in an enterprise setting. With a strong foundation in Windows, Unix, Linux, and Mac operating systems, you are adept at using development or scripting languages like PowerShell or Python to enhance security operations. You are not only technically skilled but also an excellent communicator, capable of mentoring junior team members and collaborating with various stakeholders to improve security processes and responses. Your passion for staying updated on evolving cyber threats ensures that you are always prepared to protect the organization from potential risks.
What You’ll Be Doing:
- Leading investigations and serving as a subject matter expert while pivoting and correlating across multiple log sources and systems.
- Continually improving cyber security procedures and documentation.
- Communicating with users, vendors, and other IT personnel on security-related issues.
- Keeping up to date on evolving cyber threats, identifying their impact, and detecting them in our environment.
- Providing mentoring to junior members to advance their skillsets and the team's capabilities.
- Assisting in the management of infrastructure security systems such as HIDS/NIDS, SIEM, NGAV, EDR, UBA, WAF, DLP, and vulnerability management tools to meet internal and external regulatory requirements.
The Impact You Will Have:
- Enhance the security posture of the organization by leading effective incident response efforts.
- Improve detection and response capabilities through continuous refinement of procedures and tools.
- Mitigate risks and minimize the impact of security incidents on business operations.
- Foster a culture of security awareness and best practices across the organization.
- Contribute to the development and implementation of robust security strategies and frameworks.
- Ensure compliance with internal and external regulatory requirements through effective management of security tools and processes.
What You’ll Need:
- Bachelor's Degree in Information Security, Computer Science, or an equivalent combination of education, training, and experience.
- 5+ years in an Incident Response or SOC role.
- 3+ years of experience deploying and managing endpoint, network, and cloud security tooling.
- Strong written and verbal communication skills, with the ability to establish and maintain strong working relationships with business groups.
- Technical knowledge of common network protocols and design patterns including TCP/IP, HTTPS, FTP, SFTP, SSH, RDP, CIFS/SMB, NFS.
- Familiarity with various cloud environments (AWS, Azure, O365).
- Functional and practical experience with at least one development or scripting language/framework (e.g. PowerShell, Python, .Net) and regular expressions.
- Understanding of MITRE ATT&CK and NIST Cyber Security Frameworks standards and requirements.
- In-depth understanding of Windows operating systems and general knowledge of Unix, Linux, and Mac operating systems.
- Hold or willingness to obtain certifications such as GCIH, GCFE, GCFA, GCSA, GMON, CISSP, or other relevant security certifications.
Who You Are:
- Excellent communicator with strong interpersonal skills.
- Team player who thrives in a collaborative environment.
- Self-motivated and able to work independently when needed.
- Adaptable and open to learning new technologies.
- Passionate about technology and innovation.
The Team You’ll Be A Part Of:
You will be an integral part of the Synopsys Information Security team, specifically within the Security Operations group. This dynamic team is dedicated to protecting the organization from cyber threats and ensuring the safety of our digital assets. The team values collaboration, continuous learning, and innovation, working together to enhance our security posture and response capabilities.
Inclusion and Diversity are important to us. Synopsys considers all applicants for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, military veteran status, or disability.
In addition to the base salary, this role may be eligible for an annual bonus, equity, and other discretionary bonuses. Synopsys offers comprehensive health, wellness, and financial benefits as part of a of a competitive total rewards package. The actual compensation offered will be based on a number of job-related factors, including location, skills, experience, and education. Your recruiter can share more specific details on the total rewards package upon request. The base salary range for this role is across the U.S.