IT Senior SOC Engineer | MAA Corporate Headquarters
Location: Memphis, Tennessee
Type: Full Time
Internal Number: R0015160
The IT Senior SOC Engineer reports to the IT Security Manager and monitors, builds and maintains network security systems and architecture for the company; partners with other IT teams to deliver IT security and ensure systems are optimally up-to-date; documents security requirements, procedures, and protocols to ensure users have correct resources; solves day-to-day incidents/requests submitted by customers and escalates tickets for logs or cases derived from SIEM or other security solutions.
The successful candidate will embody and work to reinforce MAA's Core Values. Â Those values include:
Appreciating the uniqueness of each individual
Communicating openly and with integrity
Doing the right thing at the right time for the right reasons
Duties and Responsibilities
Administers and maintains industry-leading security tools; performs system management and rules development.
Conducts security vulnerability assessments including, but not limited to, vulnerability scanning, compliance auditing, impact analysis, and risk assessments.
Ensures security log flow from various security devices and appliances to the SIEM (Security Information and Event Management) system.
Configures advanced system views and reports within the SIEM to prioritize and monitor security events to analyze and mitigate incidents before they evolve.
Engages in the incident response lifecycle to mitigate, circumvent, and prevent attacker objectives; includes validation and authorship of use cases and functions leveraging event data, SIEM log analysis, and network data analysis tools.
Checks and monitors alarms and audit logs to identify and remediate potential security threats; receives escalated, more complex issues from other team members.
Prepares weekly & monthly reports for distribution, review and potential follow-up actions.
Conducts advanced analysis of email headers and envelopes of emails.
Analyzes and remediates associate-reported suspicious email; receives escalated, more complex issues from other team members.
Addresses associate-reported encrypted issues.
Creates and tests new policies per company requirements.
Participates in the policy & procedures review process
Maintains compliance for company; ensures the effects of changes align & further ensure continued compliance with Sender Policy Framework (SPF), Domain Keys Identified Mail (DKIM) and Domain-based Message Authentication, Reporting and Conformance (DMARC) Records.
Develops and recommends changes within the networks and/or systems to ensure adherence to security policies IT change requests for configuration and network communication issues (AD issues, DNS issues, Network issues).
Learns and adapts to the latest network and security technologies, driving the continuous process improvement cycle, developing new efficiencies and automation improvements for the team.
Creates playbooks to assist in increasing incident response accuracy & efficiency; may review & recommend approval of other team members' work.
Initiates, responds and resolves cybersecurity cases and escalations.
Composes and drafts security alert notifications for distribution via Internal Communications.
Performs other related duties as assigned to meet the needs of the business.
Bachelor's degree in Information Technology, Computer Science, or a related field required, or an equivalent combination of experience, education and certifications/licenses required
Three (3) to five (5) years of job-relevant work experience within the IT security industry required
Professional level experience in two (2) or more of the following required:
Security Information and Event Management (SIEM)
Content filters, or email protection systems
Vulnerability and compliance scanners
Network traffic flow devices
Systems knowledge of Windows
Systems knowledge of virtual machine platforms
Experience in a corporate IT environment developing & maintaining IT security solutions preferred
Knowledge, Skills, and Abilities
Knowledge of IT security management processes including, but not limited to, the following: risk management, security planning, IT security control implementation, testing, and logical access controls
Knowledge in troubleshooting Microsoft Outlook issues, internet fundamentals, network routing, email delivery, and security
Knowledge of DNS fundamentals concerning Active Directory and Microsoft Exchange
Skill in managing tickets/issues, following-up, and closure processes (including receiving escalated, complex issues from other IT team members and/or collaboration with system administrator)
Skill in analysis and investigation of issues based on tracking information
Skill in analysis of email headers for investigation and attachment via email for prohibited file types
Skill in analysis of spam, phishing, spoofed, and blacklisted domains
Skill and ability to clearly and concisely communicate verbally and in writing with team members and customers
Skill in applying critical thinking, analysis and problem-solving methods
Skill in managing projects, organizing, prioritizing, and meeting deadlines
Skill in working under minimal level of supervision or oversight
Physical and Environmental Requirements
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job
While performing the duties of this job, the employee is regularly required to talk or hear; the employee frequently is required to stand; walk; use hands to finger, handle or feel; and reach with hands and arms
This position requires the ability to occasionally lift office products and supplies, up to 20 pounds
This job operates in a professional office environment; this role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
MAA is a real estate investment trust (REIT) that focuses on the acquisition, selective development, redevelopment and management of multifamily homes throughout the Southeastern and Southwestern regions of the United States.
Our mission at MAA is to deliver superior service and value for our residents, employees and shareholders. We refer to this as creating "A Brighter View" and we are doing it every day.
In fact, we proudly display "Our Brighter View" plaques at every MAA office just to serve as a daily reminder of our focused mission. MAA is committed to remaining true to our rich tradition of service to each other, to our residents, and to our shareholders. We respect the privilege to providing value to those whose lives we touch.
Please click on the links below to learn more about MAA’s culture and corporate charity as well as view MAA’s Corporate Profile: