NO C2C SUBMISSIONS
HYBRID
3-day per week on-site (Tuesdays, Wednesday & Thursdays)
The Security Engineer is responsible for ensuring information security best practices relating to issues such as establishing and disseminating enforceable rules regarding access to, and acceptable use of, information resources. Will establishing reasonable security guidelines and measures to protect data and systems. Assists with monitoring, reporting and management of systems security vulnerabilities. The Security Engineer monitors IT systems for indicators of compromise and sets up preventive measures and assists with investigations/resolution of security incidents and/or alleged violations of organizations security policies.
What You Will Do:
- Design, implement, maintain and operate information system security controls and countermeasures.
- Configure, troubleshoot and maintain security infrastructure software and hardware.
- Analyze security systems and seek improvements on a continuous basis.
- Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories.
- Design, plan, and execute vulnerability assessments and penetration tests.
- and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance.
- Analyze and recommend security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance.
- Assist in the development and maintenance of documented security policies, standards, procedures, and system security plans.
- Participate in the response to information security alerts and incidents.
- Analyze logs and reports of IT security related activities, incidents and customer contacts and complaints. Ensure that timely corrective actions are taken to address identified deficiencies and concerns.
- Automate internal controls and centralize logging and reporting related to security and electronic enterprise policies.
- Prepare and deliver presentations to management teams and user groups.
- Azure and Oracle Cloud experience, preferably Azure
What You Will Need:
Education and Experience
- College degree or equivalent experience preferred.
- Typically requires a minimum of five (5) years previous related work experience
Knowledge, Skills And Abilities
- Compliant with Federal International Traffic and Arms Regulations (ITAR) requirements.
- Experience in security vulnerability management, incident detection and incident response.
- Prior experience working in organizations to support services provided to internal/external clients.
- Knowledge of security controls of NIST SP 800-53 or of ISO/IEC 27002.
- Prior experience required in the Information Technology field of IT Security and/or IT Auditing.
- Clarity and conciseness in oral and written communications; demonstrated capability to produce effective presentations for delivery to both technical and non-technical audiences.
- Strong interpersonal skills to achieve process changes and departmental goals within a matrix organization; ability to communicate and work well with others at all levels of the corporation.
- Strong understanding of IP, TCP/IP and other network administration protocols.
- Great awareness of cybersecurity trends and hacking techniques.
- Obtain a working knowledge of the organizations Health, Safety, Quality and Environmental Management System.
It Would Be Nice If You Had:
Cybersecurity related certification preferred (CISSP, GICSP, GCIH, CEH or equivalent).
