Vacancy expired!
- 7+ years hands-on experience in IT Security, preferable within infrastructure/production systems support
- CISSP certified
- Designed and implemented Azure Cloud Security.
- Be hands-on in evaluating the effectiveness of the control environment and optimize technical and logical controls
- Evaluate and promote new and existing security standards, solutions and tools
- Design, implement, document, and optimize infrastructure security solutions
- Perform vulnerability/risk analysis of Purdue systems, data, applications, and the identity landscape during all phases of the system lifecycle
- Communicate areas of risk and vulnerabilities, propose mitigation plans to management
- Apply security engineering principles related to building, maintaining, and monitoring infrastructure
- Collaborate with partners to translate security and business requirements into technical designs and access policy
- Provide guidance and set direction in regard to security policy and processes for L1/L2/L3 support
- Provide L3 (Level 3) support for all security decisions, and act as an escalation point for security initiatives and operational support
- Develop and support cloud security frameworks and design to support company initiatives while ensuring solid security posture
- Support identity-based initiatives including least privilege and control of privileged accounts
- Reviews security logs and reports to monitor unauthorized system access attempts, both internal and external and make recommendations for further action
- Recommend improvements to monitoring systems to ensure confidentiality and integrity of data and availability of all network services and systems
- Must be able work with limited supervision and communicate effectively with the IT support and engineering teams, managed services, and governance, including change management and architectural review
- Provide security guidance for business and IT projects, and help drive solutions to completion
- Participate as the security liaison for critical IT initiatives such as disaster recovery, network design, system hardening, etc.
- Investigates and follows up on security violations and incidents and act as incident response lead as necessary
- Translate security requirements, risk, and security best-practice into effective presentations for technical and non-technical users
- Develop, maintain and implement security policy, standards and procedures
- Lead cyber risk management function, translating the cyber risk landscape impacting the life sciences/pharmaceutical vertical and the business to effective, optimized security controls and configurations thereof, timely patch management, and OS and application version standardization
- Measure performance by managed services against KPIs, CPIs, and SLAs and recommend additional metrics to cover gaps in service delivery benchmarks
- Bachelor Degree in Computer Science or a related discipline
- Fluency in layered defense, least access/least privilege, software defined perimeter, zero-trust concepts, identity as a perimeter
- Knowledge of cloud platforms, specifically, control design and enforcement of security best practices in IaaS and PaaS
- Solid understanding of securing connected systems by various means/controls (e.g., network-based controls, OS hardening and policy enforcement to minimize attack surface, control of inter-process communication/system control communication)
- Proficiency in networking (OSI model, TCP/IP, routed protocols) and control of network-based exploits
- Solid knowledge of protocols in use by host systems (HTTP, HTTPS, FTP, SMTP) and the implications of susceptibility to exploits
- Understanding of user-based exploits and mitigation methods (e.g., phishing, web-hosted exploits)
- Identity Governance and Administration
- Mobile device security
- Fluency in various security solutions and platforms and technology
- Vulnerability and patch management, modern endpoint protection, SSO/MFA, Active Directory, PKI/Certificate management
- Proficiency in the below platforms:
- Network-based firewalls/UTM, IDPS, Proxy, SIEM, Access/Authorization/ Authentication.
- Awareness of federal regulations applicable to life sciences/pharmaceutical (e.g., 21 CFR part 11)
- Knowledge of accepted Cybersecurity standards and frameworks- CIS CSC, NIST CSF, etc.
- Working knowledge of risk assessment and management methodologies
- Strong awareness of the cyber threat landscape and eagerness to stay abreast of emerging threats
- Proven communication skills: ability to communicate with security practitioners, non-security technical peers, management, and business users
- Able to deliver projects and improvements in time and on budget with limited supervision
- This role will assist their manager in managing the off-shore resources by providing L3 level support of security platforms and processes.
- This role will be very hands-on with operations & engineering, problem solving, analysis, etc. Need expert level candidate who can think strategically.
- Will have to make sure that third-party Security provider is following process and procedures.
Vacancy expired!