Job Details

ID #15536179
State Missouri
City St louis
Job type Permanent
Salary USD TBD TBD
Source World Wide Technology
Showed 2021-06-17
Date 2021-06-16
Deadline 2021-08-15
Category Security
Create resume

Information Security Engineer

Missouri, St louis, 63101 St louis USA

Vacancy expired!

World Wide Technology (WWT) is a global systems integrator with more than $13 billion in annual revenue and over 7,000 employees. Named #73 on the 2021 Fortune 100 Best Companies to Work For®, WWT has an exceptional culture where you will learn new skills, enjoy your work, and build relationships with friendly colleagues.

The WWT Information Security (InfoSec) team is currently seeking to fulfill its Engineer position. The InfoSec Engineer position is critical for implementing InfoSec policies and standards, which aligns with industry best practices. The InfoSec Engineer continuously performs risk assessments to ensure organizational and customer requirements are met to protect the confidentiality, integrity, and availability of information. The InfoSec Engineer will serve as a technical subject matter expert between InfoSec and other teams.

As a member of the InfoSec Policy and Compliance team, you will be responsible for proactively conducting risk assessments and mitigation strategies for internal WWT departments, products, services, and customer-servicing facilities, such as the WWT Integration Centers and Advanced Technology Center (ATC).

Responsibilities (includes but is not limited to):
  • Regularly perform risk assessments, both on-site and remotely, as defined by policies, standards, and industry best practices.
  • Utilize Risk Management strategies across the organization; identify and evaluate internal and external risks, security controls which mitigate risks, and related opportunities for security control improvements.
  • Establish and maintain security baselines for organizational assets, as defined by policies, standards, and industry best practices.
  • Apply security in depth strategies to protect information assets and systems against attack vectors.
  • Regularly evaluate information security baselines; recommend and implement relevant changes.
  • Create, maintain, and review relevant risk management reports for compliance and auditing purposes; provide regular updates to management.
  • Advise management on critical risks and threats that may affect the organization.
  • Utilize technical and business knowledge to determine the business value and cost of a control; make decisions that are valuable, effective, and economical, not technically sound at any expense.
  • Keep up-to-date on the latest security threats, laws, regulations, policies, and industry best practices.
Knowledge (includes but is not limited to):
  • In-depth knowledge of risk assessment methodologies.
  • In-depth knowledge in information security best practices and frameworks, including (but not limited to) NIST Special Publications and Cyber Security Framework, CIS Controls, ISO/IEC 27000 series, and OWASP Top 10.
  • General knowledge in laws and regulations related to information security and relevant to the organization, such as General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).
  • General knowledge in auditing and third-party risk assessments.

Requirements and Skills (includes but is not limited to):
  • Either a bachelor's degree and at least 1 year of experience in InfoSec or at least 5 years of experience in the InfoSec industry.
    • A Cyber Security, Information Assurance, InfoSec, or Information Technology degree is preferred.
    • Security certifications are preferred.
  • Excellent verbal and written communication skills. Able to communicate persuasively and influence others.
  • Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant information security controls.
  • Demonstrate an understanding of business processes, internal risk management strategies, IT controls, and how they interact together.
  • Demonstrate proficiency in process formulation and improvement.
World Wide Technology is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, age, differently-abled, veteran status, genetic information, or other characteristics protected by law.

Vacancy expired!

Subscribe Report job