Job Description:
Company's Information Security organization is looking for a hands-on Sr. Information Security Engineer to join its Security Engineering team.
Under general direction, implements the design of a unified Cyber security infrastructure
- The Engineer will be responsible for designing, implementing, maintaining, and supporting security tools / platforms to protect our organization's computer systems, networks and data and assist with improving overall security posture.
- The Engineer will collaborate closely with cross-functional teams to ensure the confidentiality, integrity, and availability of our systems and data.
- The Engineer will have the opportunity to work on a variety of projects and will require a strong sense of accountability.
- Manage security tools / platforms such as EDR, DLP, Web Proxy, Messaging, Vulnerability Management, Identity and Access Management etc.
- Developing playbooks/runbook, operational and troubleshooting documentation for use.
- Assist with Incident Response efforts.
Must have skills:
- The SME has been acting as VCISO for the client for several months and the client is really trusting him to screen candidates. We had an instance previously where it appeared the resume of the candidate was embellished, and it came to light during the tech screen. This really upset the SME so please make sure any candidates you send over can fully speak to the skills and experience on their resume!
- Understanding of technology systems such as networks, applications, servers, cloud, authentication, and emerging technologies
- Experience with TCP/IP networking, Windows, Unix/Linux, and networking services such as SSL, DNS, SMTP, DHCP, etc.
- 8+ years of experience with implementing, maintaining and supporting security tools / platforms
- Experience working with information security teams and functions, such as security engineering, security operations centers, vulnerability assessment, vulnerability threat management, security incident management, threat intelligence, threat hunting, and cyber threat analytics
- Good communications skills (oral and written) with a history of successfully engaging with multiple levels of leadership
- Strong understanding of Cyber Security Standards (ISO27001, NIST CSF, CIS Benchmarks)
- Must be a self-starter, self-motivated, and able to work independently with little oversight
- Proficiency in scripting languages, would be an advantage.
- Ability to grasp new technologies quickly, prioritize and multitask on multiple responsibilities
- Bachelor's Degree or commensurate experience required
- The Engineer will be responsible for designing, implementing, maintaining, and supporting security tools and platforms to protect our organization's computer systems, networks, and data. Additionally, they will assist with improving our overall security posture and the deployment of any new technology. The ideal candidate should seamlessly utilize security tools and platforms such as EDR, DLP, Web Proxy, Messaging, and Vulnerability management systems as part of their day-to-day operations.