Vacancy expired!
IT Security Engineer will partner with the Sr. VP IS and Directors of IT Security, and Operations, IT Business Application Delivery, and the Enterprise Architect, to ensure a secure network environment. Their work will include designing, implementing, operating, and maintaining our network security infrastructure and generating network policy and documentation to ensure that we are compliant with relevant security regulations and framework.
Essential Duties and Responsibilities:
Installation and configuration of networks and network devices such as web application firewalls, network firewalls, switches, and routers
Network Security configuration, audit, and management of Windows servers
Installation, configuration, audit, and management of security tools
Security configuration, audit, and management of applications and databases
Leading security incident investigations, including basic forensic analysis and reporting
Maintenance and monitoring of network and host intrusion detection and prevention technologies
Implementing security controls
Implements physical and procedural safeguards for information resources within the facility
Administers access to information resources and makes provisions for timely detection, reporting, and analysis of actual and attempted unauthorized access to information resources
Proposes and assists with the acquisition of security hardware/software
Leads identification and proposes remediation of vulnerabilities
Develops and maintains access control rules
Maintains user lists, passwords, encryption keys, and other authentication and security-related information and databases
Develops and follows procedures for reporting on monitored controls
Develops and leads tests of network security tools
Leading the design, implementation, and migration of enterprise infrastructure and application services to software defined networks
Develops and leads procedure for testing disaster recovery plan
Provides help-desk-style assistance
Qualifications:,
BS in Computer Science or related field preferred.
Professional certification, such as CISSP, CISM, CISA, CRISC, or other information security credentials preferred.
5-7 years of hands-on IT work experience with 2+ years fully engaged on security
Experience working across the full stack of enterprise security tools to include everything from the physical layer to the application layer
Ability to lead the design of network security infrastructure and the integration of new requirements into existing architectures
Maintain high level of confidentiality and integrity
Experience leading compliance assessments of relevant cybersecurity frameworks
Typically a background in technical IT roles such as IT operations, with an unquenchable curiosity about and abiding interest in information security
Experience conducting daily Security Operations Center triage and research
Applied experience with many of the following technologies/roles:
Privileged Account Management
Two-Factor Authentication
Web filtering
Web Application Firewalls
Virtualized computing environments
Encryption-at-rest and encryption-in-transit
Advanced endpoint protection
Enterprise Microsoft Windows environments
Vulnerability Management
Strong oral and written communication skills, ability to interact and communicate with all levels of personnel in a professional and tactful manner.
Experience responding to incidents, crises, and investigations with sensitivity, tenacity, and a focus on detail required.
Strong understanding of current information security theory, best practices, and standards.
Strong, applied knowledge of security practices and methodologies, security controls and architecture including the use of intrusion detection/prevention and other defenses.
Experience with security administration across multiple operating systems. Experience with conceptual security design considerations in firewalls, LAN, WAN, File Server, PC, and VPN environments.
Vacancy expired!