Security Engineer II, Host Security

GENERAL PURPOSE:The Security Engineer II is in charge of planning and carrying out security upgrades to safeguard Bayside’ data and assets. The Host Security Engineer drives endpoint security, data analytics, and orchestration automation projects that strengthen Bayside’s security posture and guarantee compliance and integrity. The Host Security Engineer oversees the vendor/product due diligence, application design, strategy, and roadmap for the product area.By acting as a point of contact for the other IT functional areas, the security engineer can influence outcomes as necessary. The host security engineer serves as the third level of production support for applications and acts as the subject matter expert (SME) in security.

• Research, evaluate, and develop security strategy and develop standards following industry best practices.
• Recommend improvements to company's security posture through technological, administrative, or physical controls. Work with project teams regarding security architecture and technical implementation.
• Lead information security implementations and support project delivery, ensuring security solution are acquired, configured and implemented correctly.
• Work with the other IT organizations to design, develop, and implement Enterprise Security solutions to support new initiatives
• Provide technical expertise to solve production issues related to security applications, recommend solutions or process enhancements and root cause analysis.
• Ensure that business strategy, IT enterprise security and implementation are aligned. Provide input to technical designs in enterprise security solutions, specifically around tools and systems that would best support the design.
• Ensure that security solutions are acquired, configured and implemented correctly.

• Strong knowledge of security tools Anti-virmalware protection, Advanced Threat Protection, Log Collection & Analysis, User Behavior Analytics, Vulnerabilities Managements in Operating Systems, Databases, and Networks.
• Strong knowledge of current security space with general understanding of current security threats, techniques, data analytics, detection and response & automation orchestration toolsets including SIEM and EDR/XDR/MDR and IR.
• At least 7 years of Information Security experience and at least 5 years with a large organization.
• Strong knowledge of security products such as File Integrity Monitoring, Endpoint Security, Endpoint Encryption, Advanced Threat Protection, Security and Log Management
• Bachelor's degree preferred or Senior level certification with equivalent demonstrated relevant experience with security tools
• Able to provide accurate estimates of timeframes and cost estimates necessary to complete potential projects and develop milestones and project implementation plans.
• Ability to work in a group setting and independently to provide technical solutions
• Excellent organizational and time management skills