What You Will Do:
The Cyber Security Engineer is a curious and thorough owner and tuner of our security tools. The role will be essential in managing and maturing the security stack while providing outputs and metrics that show the effectiveness of our tools and gaps. The role will be an essential contributor to the security program and an example and mentor of security best practice within our organization. The engineer will be a creative and impactful member to the direction and success of the security team.
Your Day to Day Essential Duties:
Implement, monitor, audit and manage advanced security technologies: SIEM, IPS, and other security related devices.
Collaborate on critical IT projects to ensure that security issues are addressed throughout the project life cycle.
Perform incident management/response across the enterprise and provide consistent security monitoring, response, follow-up investigation, and determination of root cause.
Assist in the collection of system information and procedures required by internal and external audits, risk assessments and examinations.
Assist with maintaining the disaster recovery plan; assist in the company’s business continuity testing as part of the Information Technology team.
Member of the Incident Response Team.
Monitor the organization’s networks for security breaches and investigate a violation when one occurs.
Prepare reports that document security breaches and the extent of the damage caused by the breaches.
Assist with output and implementation of vulnerability program and scanning.
Assist with planning and implementation of penetration testing.
Research the latest information technology security trends.
Assist in the development of security standards and best practices for the organization.
Recommend security enhancements to management or senior staff.
Assist in contribution and implementation of ongoing security awareness training.
Plan, test, deploy, troubleshoot and refine deployment of the latest antivirus and security modules as needed.
Act as escalation point for triage and validation from SOC of log files, dashboards and other appropriate data sources.
What You Bring to the Team:
Candidate should have experience supporting environments of 1000+ users which includes multiple geographically dispersed locations, ingress / egress points and diverse set of site requirements.
Familiarity with SaaS organizations or industry supporting / hosting a web product.
Experience with multiple information technology systems: Windows Server, Windows desktop, Mac OS, Active Directory, Linux, TCP/IP, LAN/WAN, VPN, and NAC.
Excellent problem solving and troubleshooting skills.
Experience in vulnerability testing and ability to plan and implement ongoing testing and monitoring programs and knowledge of IT operational infrastructure including business continuity.
Excellent written and verbal communication skills and the ability to discuss complex technical issues with executive leadership as well as highly technical individuals.
In-depth knowledge of network routing, firewalls, intrusion detection systems, internet filtering, anti-virus technology, application security, secure web gateways, secure email gateways.
IPS / IDS
Secure Proxy and web filtering
Switching & Routing
Debuggers / Reverse Engineering Tools