Our Team:

We defend Bloomberg.

Our team of security experts is essential to the Company's core business. We anticipate, detect, prevent, plan, and execute - extra points for automation. We love technology and are constantly thinking of ways to improve security monitoring and incident response at Bloomberg. Join our team to design and support solutions that enable the Cyber Security Operations Center to monitor one of the largest private networks in the world.

We'll trust you to:

• Deploy, monitor and manage the CSOC detection systems both commercial and open-source: Log aggregation, Full Packet Capture (PCAP), IDS, Netflow probes, Network Aggregation, automated malware analysis systems, etc
• Deploy, monitor and manage the CSOC operational systems including: Splunk, noSQL databases, web tools, and server components
• Troubleshoot systems, patch, and coordinate with vendors.
• Ensure all devices use consistent configurations, integrate into the security infrastructure, and are available for operational use
• Engage directly with key stakeholders to onboard new data sources for security monitoring
• Create processes and tools to monitor system health and performance
• Architect the security infrastructure, including capacity planning and EOL replacement
• Assist in evaluation and testing of new security software, tools or devices, including active participation in vendor PoCs.
• Maintain security infrastructure documentation and standard operating procedures

You need to have:

• Prior experience supporting security devices and systems e.g. Intrusion Detection, Packet Capture, Netflow probes, etc
• Familiarity with log management and SIEM tools and technologies
• Unix sysadmin skills
• Python/Perl/Powershell command line & shell scripting
• Familiarity with configuration management (e.g. Chef/Puppet/Ansible) and systems monitoring (e.g. Nagios) tools
• Working knowledge of network infrastructure devices (e.g. web proxies, firewalls, VPN's, routers/switches, SPAN, Taps, etc.)