I am...

ABOUT the MAD SECURITY TEAM

​

At MAD Security, your passion for excellence and dedication to integrity can thrive. Every challenge is an opportunity to innovate, and every project is a chance to exceed expectations. As an esteemed team member, you’re not just doing a job; you’re making a difference in a culture that values hard work, accountability, and continuous growth. Be a part of a team where your efforts are recognized and celebrated, your integrity is cherished, and your professional development is a priority.

​

POSITION OVERVIEW

​

We seek a Tier 3 Security Operations Center (SOC) Analyst with experience working in a SOC or NOC in the MSP or MSSP environments. The ideal candidate will have a passion for high standards and constant improvement with a focus on safeguarding our clients by simplifying cybersecurity challenges. Candidate must have extensive experience in SOC operations and management, incident response (IR), firewall management (FW), and vulnerability management (VM). As a SOC Tier 3 Analyst, this position is part of a multi-function team, including network engineers, cyber operations technical leads, cyber operations center managers, firewall engineers, and compliance management consultants.

​

The Tier 3 Analyst reports to the Senior Cyber Engineer. The key responsibilities of this position fall into three categories: 1. You will provide cybersecurity advice and support to our clients, understanding how to build rapport and maintain client relationships with a focus on partnership to address their cybersecurity challenges; 2. You will participate in meetings and discussions with senior company executives, Information System Managers, and Cybersecurity Specialists within and outside of MAD Security; and 3. You will participate in accomplishing company monthly, quarterly, and annual objectives.

​

About MAD Security, LLC

​

Founded in 2010, MAD Security is a dynamic, Service-Disabled Veteran-Owned Small Business (SDVOSB) cybersecurity managed security services provider (MSSP). We are dedicated to safeguarding the defense industrial base, maritime, and government contractor businesses from EVIL by simplifying the cybersecurity challenge. Our comprehensive suite of services includes Security Operations Center (SOC) as a Service (SOCaaS), Managed Detection & Response, Incident Response, GRC Gap Assessments, User Awareness Training, Penetration Testing, and more.

​

Our core SOC services deliver relentless monitoring, rapid threat detection, and swift response to keep our clients' environments secure. By integrating NIST frameworks and standards into all our services, we ensure top-tier compliance and best practices.

​

Driven by our Core Values—Passion for High Standards and Constant Improvement, Integrity, We Do the Work, Coachability, and Professionalism—our commitment to excellence is unwavering. Recognized as a Top 250 MSSP by MSSP Alert for three consecutive years and honored as an Inc. Best Workplace for two consecutive years, the MAD Security team of cyber warriors consistently delivers exceptional managed services and tailored technology solutions to meet the unique needs of defense industry stakeholders.

• Master utilizing the technical tools and procedures used to manage the SOC
• Deep understanding of how SIEM/SOAR technologies function
• Experience in administrating and maintaining Elasticsearch
• Experience in problem solving during incident response event
• Experience with planning and executing focused threat hunt operations
• Collaborate with all SOC experts to monitor, identify and make notifications on cybersecurity matters to provide a holistic and seamless cybersecurity experience for the client
• Analyze, triage, aggregate, escalate and report on client security events including investigation of anomalous and malicious activity
• Perform correlation and trend analysis of security logs, network traffic, security alerts, events and incidents
• Continuously work to improve SOC technologies to minimize false positives and maximize detection and prevention effectiveness
• Develop and track key performance indicators (KPIs) related to SOC operations to benchmark and further enhance capabilities
• Develop comprehensive and accurate reports and presentations for technical and executive audiences
• Design and conduct proof-of-concept tests to replicate third-party findings and propose solutions to resolve discovered security issues
• Communicate regularly with team and with clients to proactively address concerns

REQUIRED QUALIFICATIONS

• Minimum six (6) years of experience in IT Security and/or Information Technology.
• Industry-recognized professional certifications such as: GCIH, GCFA, GNFA, GREM
• Experience with industry security tooling is required.

​

PREFERRED QUALIFICATIONS

• Experience working in a Security Operations Center in an enterprise or managed services provider environment is desired.
• Experience in an incident response, forensics, malware reverse engineering or incident investigation role in large scale environments is desired.
• A bachelor's degree in the following areas of study is preferred: Information Technology, Information Security/Assurance, Computer Science, or an equivalent combination of education and experience. A master's degree is a plus.
• Fortinet, AT&T AlienVault, Avanan, Preveil, Bricata, Elastic is a plus.

Skills and Capabilities

​

• Strong problem-solving and critical-thinking skills. Ability to prioritize and execute autonomously.
• Ability to develop and manage cybersecurity projects.
• Ability to communicate effectively with all staff, management, and clients orally and in writing.
• Ability to collaborate across the organization and operate effectively with multiple teams and solutions towards a shared goal.
• Strong understanding of the latest security principles and protocols.
• Strong understanding of security operations technologies, including SIEM and orchestration.
• Ability to tune correlation rules and outcomes via security information and event management (SIEM) and security orchestration, automation, and response (SOAR) platforms.
• Demonstratable working knowledge of emerging technologies and tactics used within a SOC or IR and how they are applied to improve efficiency and effectiveness.
• Understanding of tactics, techniques, and procedures associated with cyber threats and the ability to develop relevant alerting, countermeasures, and threat-hunting techniques.

​

Supervisor Responsibilities

​

None

​

Location and Work Environment

​

While performing the duties of this job, the employee regularly works onsite in an office setting. This position is exclusively located in Huntsville, Alabama.

​

Physical Demands

​

The physical demands described herein are representative of those that an employee must meet to perform the Primary Duties of this Job Description successfully.

​

Travel

​

None

​

Other Duties

​

Please note this Job Description is intended to describe the general nature and level of work to be performed by the employee(s) assigned to this Job Title. It is not designed to contain nor be interpreted as a comprehensive and/or all-inclusive list of duties, responsibilities, and qualifications. MAD Security, LLC reserves the right to amend and/or change responsibilities to meet business and organizational needs, as necessary, with or without notice.

Role Summary

​

The Identity and Access Management (IAM) Senior tech lead is responsible for leading engineering related initiatives to build, enhance, and deliver IAM products and services focused on access provisioning, deprovisioning, access reviews, authentication, identity management, privileged access and service account management, monitoring, and reporting. Candidate must be a strategic, thought leader, overseeing, and implementing industry standard best practices applicable to the Freddie Mac’s environment. The lead must oversee the development of security solutions that adhere to applicable policies and comply with information security requirements.

​

Position Overview:

​

Responsibilities also include working with IT teams to consult and partner on solutions with appropriate access controls, along with managing control design patterns that enable IT asset owners’ adoption of IAM enterprise control solutions. The candidate will also collaborate with key stakeholders to extend the IAM control solutions to technology assets while working with other subject matter experts and engineers.

​

Company Overview:

​

At Freddie Mac, you will do important work to build a better housing finance system and you’ll be part of a team helping to make homeownership and rental housing more accessible and affordable across the nation. Today, Freddie Mac makes home possible for one in four home borrowers and is one of the largest sources of financing for multifamily housing. Join our smart, creative and dedicated team and you’ll do important work for the housing finance system and make a difference in the lives of others.

• As part of IAM solution architecture and engineering team, you should drive business outcomes through tech solutions, must understand the business objectives (intended outcomes) and must identify feasible solutions that will enable/further those outcomes.
• Collaborate with Enterprise Architecture and Risk & Security groups to ensure new and existing solutions are aligned with enterprise standards.
• Formulate and manage a business and resource plan for the team to ensure appropriate resources are aligned to support IAM strategic plans, goals, and objectives.
• Partner with business and IT customers to drive product re-search, RFP/vendor interview from technical perspective and is responsible for communicating business cases for TAWG/ARB approvals.
• Work with other development leads on design brainstorming and design review to ensure alignment with current authentication patterns, and standards.
• Drive and adopt a culture driven by data - where key performance indicators are gathered from top to bottom and fed to automated.

Required Qualifications:

• Bachelor’s degree in computer science, Information Technology, or related field or equivalent work experience
• Minimum 10 years’ experience with developing and implementing identity and access management tools and solutions.
• Minimum 8 years’ experience managing and developing strong information security and/or technology teams.
• Understanding of IAM relevant technical solutions (such as SailPoint, MFA-Ping, Privileged Access Management: CyberArk). Fine-grained authentication policy enforcement and standardization via PlainID.
• Demonstrated experience with infrastructure technologies including Cloud, Lightweight Directory Access Protocol (LDAP), Security Assertion Markup Language (SAML), and MFA/SSO.
• Ability to think strategically and communicate effectively at the most senior levels of the company to communicate the value and benefit of IAM solutions.
• Possess strong knowledge of industry best practices, technology, and evolving threats to enhance defenses for Freddie Mac’s information systems and resources. Advises management on security protocols and incidents. Mentors and trains to ensure team knowledge and effectiveness.
• 3-5+ years of troubleshooting and investigating complex issues within a highly regulated and secure environment.
• Specific experience with NIST, PCI, or other information security related framework.
• Ability to convey technical information to all groups and individuals concisely and clearly both verbally and in writing to individuals with limited technical experience.
• CISSP, CISM, Cloud Security (CCSP, CCSK), or other information security related certification(s).
• Customer service driven, quality focused, and collaborative with effective and persuasive written and oral communication skills.
• Strong knowledge and experience with incident/problem management processes
• Possess critical thinking and business risk analysis skills.
• Strong communications skills, oral and written.
• Ability to collaborate and interact productively with team members and key stakeholders.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
• Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.

• Keys to Success in this Role:
• Drive for Execution – Be accountable for strong individual performance
• Partnership – Build trust and strong partnerships through your actions
• Growth and Development – Know or learn what is needed to deliver results and successfully meet execution goals
• Strong analytical skills with high attention to detail.
• Strong organizational, time management, negotiation, and resource management skills.
• Current Freddie Mac employees please apply through the internal career site.
• We are an equal opportunity employer and value diversity and inclusion at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any other characteristic protected by applicable law. We will ensure that individuals with differing abilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
• CA Applicants: Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
• Notice to External Search Firms: Freddie Mac partners with BountyJobs for contingency search business through outside firms. Resumes received outside the BountyJobs system will be considered unsolicited and Freddie Mac will not be obligated to pay a placement fee. If interested in learning more, please visit www.BountyJobs.com and register with our referral code: MAC.
• Freddie Mac offers a comprehensive total rewards package to include competitive compensation and market-leading benefit programs. Information on these benefit programs is available on our Careers site.
• This position has an annualized market-based salary range of $146,000 - $218,000 and is eligible to participate in the annual incentive program. The final salary offered will generally fall within this range and is dependent on various factors including but not limited to the responsibilities of the position, experience, skill set, internal pay equity and other relevant qualifications of the applicant.

Who we are

Kentik is the network observability company. Our platform is a must-have for the network front line, whether digital business, corporate IT, or service provider. Network professionals turn to the Kentik Network Observability Cloud to plan, run, and fix any network, relying on our infinite granularity, AI-driven insights, and insanely fast search.

Kentik makes sense of network, cloud, host, and container flow, Internet routing, performance tests, and network metrics. We show network pros what they need to know about their network performance, health, and security to make their business-critical services shine. Networks power the world’s most valuable companies, and those companies trust Kentik. Market leaders like IBM, Box, and Zoom rely on Kentik for network observability. Visit us at kentik.com and follow us at @kentikinc.

​

What we do

Kentik's Platform Engineering group is responsible for storing, enriching, and querying traffic metadata and metrics from the world's largest networks. Our platform actively monitors infrastructure, triggers automated responses to outages and attacks, and is critical to delivering complete network observability to our customers. Our platform ingests trillions of records and serves hundreds of thousands of queries for our users each day. The scale that this group services is tremendous.

​

Platform Engineering consists of 4 teams; (1) Ingest and Storage, (2) Query, (3) Network Data, (4) SRE. As a senior engineer in platform engineering on the Network Data Team, you will have the opportunity to co-own, design, and scale a high-performance, data-intensive platform that processes the network monitoring data from the most influential companies on the internet.

​

We have built a team of world-class engineers, network experts, and technology thought leaders in a remote-friendly culture from day one. While prior experience in a remote environment is not required, we highly value strong collaboration and communication skills, and a high level of independence and autonomy.

• Work as an individual contributor to improve our network data observability services to meet customer demands
• Collaborate with other engineer teams, support, and sales teams
• Work on high-visibility, challenging engineering problems.

Required Qualifications

• 5+ years of experience working with wide-area network deployments, including analysis of the associated protocols
• Experience in network management or network data analytics
• 3+ years of experience with Go/Java/Rust, or similar languages
• Prior experience or an interest in working on large-scale SaaS systems
• Solid understanding of network observability topics like IPFIX/Netflow/sflow, SNMP, IP (v4/v6) allocation, BGP, DNS, etc and the network domain and use cases
• A passion to grow personally and contribute to our team
• Strong collaboration skills

​

Preferred Qualifications

NA

Our tech stack

• Our core data engine and platform are primarily written in Go
• We use Node.js + Express for application serving, and React as our primary UI framework
• We also use some JS and Python for tooling/scripting
• In addition to our own database, we use Postgres, Kafka, Mysql, and Redis
• Internal and public APIs expose both rest/json and gRPC endpoints
• Haproxy, Envoy for API traffic routing and balancing
• Github for source control, PRs, issues
• Jenkins for automated builds

​

What we offer

Kentik is a fully remote company that operates globally. We seek professionals that will help us thrive as an organization, and in turn, to broaden and enhance your career. We’re very thorough in the interview process to understand your skills and how they will relate to your successful growth here at Kentik. Our compensation philosophy encompasses a fair program for all in order to attract, engage and retain talented individuals who will drive our business and wow our customers.

​

The compensation range for this position is: $186,000 - $251,000. This range reflects the low and high end of the U.S. compensation range Kentik reasonably and generally expects to pay the hired candidate in this role. The actual compensation offered may be lower or higher than the stated range depending on various factors, including but not limited to:

• Experience with the skill sets required for success
• Demonstrated competencies and potential
• A geographic market-based approach

​

In addition to a great career opportunity, Kentik offers stellar benefits for our employees, which include:

• 100% of premiums are paid by company for health, vision and dental coverage for you and your dependents
• Additionally, an annual Health Reimbursement Account (HRA) of $3,000 for an individual or $4,500 for a family
• Paid family & medical leave
• Open PTO, a quarterly Wellness Day, and a minimum of 10 paid holidays
• 401(k) retirement account
• Home office reimbursement
• Stock options

​

Note: Benefits are as listed for all US full-time employees. For compensation, international applicants will be treated equitably in relation to the laws applicable within the countries in which we operate.

​

Come work with us

The true meaning of Kentik is visibility. We’re committed to making sure everyone feels empowered to use their voice, has a sense of belonging, and is represented at Kentik.

We don’t look for individuals who fit the culture, but those who will continue to add to the culture.

We encourage everyone to apply, especially those individuals who are underrepresented in the industry: people of color, LGBTQI+ community, women, individuals with disabilities (both seen and unseen), veterans, and people of any age or family status.

Kentik is committed to creating an inclusive interview process. If you require a reasonable accommodation during the application or interview process, please reach out to recruiting@kentik.com.

Come as you are! You will be working at a fast-growing, well-funded startup alongside industry thought leaders and network aficionados as we build the future of observability and set the high bar for how network operations and digital businesses should run. With a competitive salary and amazing benefits on top of the meaningful and challenging projects you’ll take on, we’re sure you’ll enjoy joining the Kentik team.

#li-remote