Fast Facts

Nelnet is seeking a Detection Engineer to enhance its cybersecurity operations through collaboration and monitoring of security logs and alerts. This role requires strong troubleshooting skills and a commitment to developing successful cybersecurity strategies in a remote work environment.

Responsibilities: Key responsibilities include monitoring security logs, tuning alerts, collaborating on IT projects, and responding to audit findings while maintaining documentation and a positive customer-centric attitude.

Skills: Required skills include expertise in SIEM products, threat detection mechanisms, and experience with scripting languages such as PowerShell or Python. Knowledge of Google Cloud technologies is preferred.

Qualifications: Candidates should hold a Bachelor’s degree in relevant fields and have 4+ years of IT operations experience related to cybersecurity.

Location: This is a remote position based in Nebraska, USA.

Compensation: $85000 - $110000 / Annually

Nelnet is a diversified and innovative company committed to enriching lives through the power of service as a student loan servicer, professional services company, consumer loan originator and servicer, payments processor, renewable energy solutions, and K-12 and higher education expert. For over 40 years, Nelnet has been serving its customers, associates, and communities.

The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, you're part of a community invested in the success of each individual. That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work.

Nelnet is a student loan servicer that's grown into a fiber internet pioneer, real estate investor, and software provider. But that's just the beginning. With 6,500 associates and growing, we take our business wherever superior customer experiences and ingenuity are needed.

The perks of working at Nelnet go beyond our benefits package. When you join the Nelnet team, your part of a community invested in the success of everyone. That support comes through in our work, as we are united by our mission of creating opportunities for people where they live, learn, and work.

Nelnet’s Cybersecurity Log Operations Engineers operate as a shared service across multiple business lines representing a hybridized attack surface covering on premise and cloud-based elements. It is imperative that our engineers understand the business needs and be able to coordinate those with the organization’s security and operational goals.

This position requires work in support of the Company’s contract with the United States Department of Education (“ED”). As such, the United States Government requires that any applicant for this position must complete the United States Government security clearance. Effective June 1, 2018, ED has informed Nelnet that security clearance applications for foreign nationals are not being accepted or processed. Considering this direction from ED, Nelnet will be unable to hire applicants without United States citizenship for such positions.

JOB RESPONSIBILITIES:

• Is a self-starter and can consistently produce outstanding results with minimal supervision.

• Has exceptional troubleshooting skills and is detail oriented.

• Monitors and works with logs in Google SecOps and Google Cloud Observability.

• Works closely with system owners to manage alert and security use case creation as well as operational alerting in the Cloud Observability projects.

• Collaborates on IT projects to ensure that security issues are addressed throughout the organization.

• Tunes alerts and use cases over the Use Case Management Life Cycle.

• Tunes alerts and alerting in GCP Projects utilizing Big Query, Log Analytics or Log Explorer tools.

• Participates in department-wide change control and IT governance processes, on behalf of the Nelnet Cyber Security Group (CSG).

• Stays up to date on the latest global vulnerability landscape and published compliance guidelines.

• Responds to audit findings, directing remediation, tracking progress, providing status reporting, and creating/maintaining evidence documentation.

• Develops and maintains documentation for security related systems.

• Is flexible and nimble in a fast-paced environment.

• Maintains a positive, customer centric attitude.

EDUCATION:

Bachelor’s degree in cybersecurity, computer science, systems administration, information systems, or related areas. Related work experience may be substituted for this requirement.

EXPERIENCE:

4+ years IT operations experience working with SIEM products and threat detection.

4+ years IT experience implementing and supporting cybersecurity technologies, such as:

• SIEM: Google SecOps experience preferred.

• SOAR: Google SecOps experience preferred.

• Database Monitoring.

• Threat detection mechanisms.

• Alarming/Alerting mechanisms.

• Hands on experience with SIEM, SOAR, and Database Monitoring products.

• Experience with PowerShell, Python, BASH, Chef or Ansible a plus.

COMPETENCIES – SKILLS/KNOWLEDGE/ABILITIES:

• Ability to work with a remote team via collaboration tools (Microsoft Teams, E-Mail, and Video Conferences).
• Desired Qualifications:
• Any relevant Cybersecurity certifications, such as: Security+, SSCP, CISSP, GSEC, GCIA, GCI, CEH, SEC 511, SEC 555 etc.
• Any relevant IT certifications specific to the Google, Amazon or Microsoft cloud ecosystems.
• Enterprise level experience with:
• Google SecOps
• Google Cloud Observability
• Sysmon
• Syslog
• Linux
• Atlassian products Jira and Confluence
• ServiceNow, preferably including SNOW security related modules (VR, GRC, etc.)

Pay range for this role is $85,000-$110,000 annually, depending on experience.

#LI-CW1

#LI-Remote

Our benefits package includes medical, dental, vision, HSA and FSA, generous earned time off, 401K/student loan repayment, life insurance & AD&D insurance, employee assistance program, employee stock purchase program, tuition reimbursement, performance-based incentive pay, short- and long-term disability, and a robust wellness program. Click here to learn more about our benefits: LINK.

Nelnet is an Equal Opportunity Employer, complies with Executive Order 11246, and takes affirmative action to ensure that qualified applicants are employed, and that employees are treated during employment, without regard to race, color, religion/creed, national origin, gender, or sex, marital status, age, disability, use of a guide dog or service animal, sexual orientation, military/veteran status, or any other status protected by Federal or State law or local ordinance. 

Qualified individuals with disabilities who require reasonable accommodations in order to apply or compete for positions at Nelnet may request such accommodations by contacting Corporate Recruiting at 402-486-5725 orcorporaterecruiting@nelnet.net.

Nelnet is a Drug Free and Tobacco Free Workplace.