Job Description:

Develop and execute software tests to identify software problems and their causes. Test system modifications to prepare for implementation. Document software and application defects using a bug tracking system and report defects to software or web developers. Execute automated and manual scripts. Create & maintain databases of known defects using communication protocols like 12C, SPI, & USB and develop & validate C code for low level sensor drivers.

Job Location:

Will work in Schaumburg, IL and various unanticipated locations in US which may require relocation.

Contact:

Interested applicants may send their resumes to Metmox,LLC , Attn: HR, 1701 East Woodfield Road, Ste. 400, Schaumburg, IL  60173.

*Resume must specifically identify all education and experience relevant to job offered.

We are searching for 2 applicants with a minimum of 1 year of experience in cyber security and a CEH certification

Please find the below JD.

Responsibilities:

• Work with cross-functional teams (e.g., Network, Infra, operations) to ensure that all cybersecurity is properly addressed in M&A transactions.
• Develop and maintain relationships with key stakeholders in the cybersecurity and M&A leads to stay up to date on industry trends and developments.
• Identify opportunities for the company to acquire or invest in companies that will enhance its cybersecurity capabilities.
• Support the integration of acquired companies into the company’s existing cybersecurity infrastructure and processes.
• Support individual SME work threads/functions plans and create an integrated plan for development and deployment activities.
• Participate in the development of cybersecurity strategies and plans for the company.

Requirements:

• Strong technical background in cybersecurity, including experience with security technologies and methodologies.
• Understanding of M&A processes and experience in conducting due diligence
• Excellent written and verbal communication skills, with the ability to effectively present complex technical information to both technical and non-technical audiences.
• Strong relationship-building skills, with the ability to collaborate effectively with cross-functional teams.
• Proven ability to take initiative and work independently in a fast-paced, dynamic environment.

Education and Experience:

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field.
• A minimum of 1+ years of experience in cybersecurity with CEH certification or 2 years of experience in M&A experience.

Please send your details to recruitment@metmox.com

Experience: 2+ Years

Job Description:

• Review corporate policies and procedures according to regulatory requirements  
• Good knowledge on cyber security    
• Review risk and vendor risk assessments responses     
• create and process risk assessments in GRC tools     
• Assist the GRC Consultant with audit activities     
• Assist with TPRM related activities     
• Assist with data analysis, data correlation in Excel and prepare presentations for client meetings     
• Establish a collaborative and supportive approach in undertaking duties     
• CEH Certification is mandatory 
• Basic knowledge on Vulnerability, pentester etc

Please send your details to recruitment@metmox.com

Experience: 2+ Years

Requirements:

• Knowledge of Risk Management Principles (risk avoidance, transfer, mitigation, acceptance), Risk Assessment process. Knowledge of information security risk management and IT controls frameworks and methodologies (e.g. ISO/IEC 27005, COBIT,)

• Require an understanding of key technology concepts such as access control, confidential data, encryption, business continuity, info-sec scans, and vendor apps.

• Strong knowledge of IT organization business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns). They may also be required to possess a solid understanding of risk management functions, including IT audit, cyber security, and/or IT compliance.

• Establish and maintain risk criteria, identify, analyze, and evaluate information security risks. Conduct risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities and risks.

• Having good knowledge in creating/establishing the reports in scope of Risk Assessments

Responsibilities

• Perform selection of appropriate information security risk treatment options as a result of risk assessment results, determine all controls that are necessary to implement the information security risk treatment options, compare controls and verify that no necessary controls have been omitted, obtain risk owner’s approval of the risk treatment plan and acceptance of residual information security risks. 
• Assist with responding to customer information security requirements and due diligence questionnaires.  Coordinate and facilitate response gathering in conjunction with other organizational application, support, infrastructure, legal, HR, and physical security teams as necessary.  
• Ensure responses are accurate, valid, consistent, and reported within expected deadlines.  Maintain repository of customer information security requirements, track, and report on compliance. 
• Research, recommend, and contribute to information security polices, standards, and procedures and work with other organizational participants from legal, human resources, information technology, compliance, physical security, the business units, and others that have to implement the policies.   
• Conduct Process understanding discussions with the Clients as part of assessing risks arising from their use of Technology and identify control gaps within their processes.

Please send your details to recruitment@metmox.com

Experience: 9+ Years

Mode of Work: Night Shift (US CST Time Zone—6:00 PM to 3:00 AM IST)

Key Skills For SIEM Admin SME:

Extensive SIEM experience needed but can be from Splunk, Alien Vault, Securonix, or any related SIEM.

• Must have strong ingestion experience with Cloud data sources -they are a GCP (70%) AWS (30%) shop
• Must have background in security operations and incident response- will be working collaboratively with DevOps team.
  1. (50%) Manage and optimize p44’s SIEM with experience in a similar tech IaaS/Infrastructure tech stack (we are a big GCP shop with some AWS)
     • Identify, configure, and optimize security event & log sources needed for SIEM ingestion.
     • Generate appropriate rules for alerting and watch lists within SIEM to monitor current threats.
     • Create metrics and monitor SLAs, KPIs and KRIs 
     • Lead Red team exercises to test discovery and responsiveness to critical threats.
  2. (25%) Initially take on all aspects of investigating SIEM alerts by Reporting, responding, investigating, and performing root cause analysis for concerning security incidents on daily basis with a hopeful goal of eventually handing only Tier 3-4 tickets as we hire others to handle Tier 1-2 tickets.
     • Daily report that talks about security incidents/alerts that have triggered over the past 24 hours with remediation guidelines
     • Enrichment of all the IOCs/TTPs that are a part of reported security incident
  3. (25%) Develop and manage Threat Intelligence program to ensure company awareness and actioning on current and everchanging threats

Other qualities:

• Independent, energetic and willing to take action themselves /rollup your sleeve mentality and not rely on the division of teams for others to get things done
• Strong overlap for EU and US timezone to help coordinate investigations with other team members

Please send your details to recruitment@metmox.com