Vacancy caducado!
- Detailed design and implementation of Information Security work efforts, e.g. secure network design, detailed design and implementation of IAM systems, etc., as well as providing security subject matter expertise to outside IT and business teams.
- Monitor their organization's networks for security breaches and investigate a violation when one occurs.
- Install and use software, such as firewalls and data encryption programs, to protect sensitive information.
- Conduct penetration testing, to simulate attacks to look for vulnerabilities in systems before they can be exploited.
- Research the latest information technology (IT) security trends.
- Develop security standards and best practices for the organization.
- Recommend security enhancements to management or senior IT staff.
- Providing security design and planning during the design, development, and maintenance of infrastructure environments.
- Providing cyber engineering expertise to determine security requirements by evaluating best practices; researching security standards/tools; conducting system security and vulnerability analyses and risk assessments; identify integration issues.
- Enhancing current software/security team competence by developing and directing secure application/architecture techniques; recommending improved processes.
- Evaluating network and security technologies; developing requirements for local area networks (LANs), and secure interfaces.
- Influencing the system requirements and design processes to incorporate the identification of security requirements early in these processes.
- Identifying poor security designs in systems and offering alternative designs.
- Evaluate, respond, and mitigate alerts that originate from the SIEM and the Cyber security product suite, e.g. NGFWs, IDS/IPS, Anti-virus, Web Application Firewalls, Conditional Access Policies, etc.
- Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities.
- Conducts security assessments and other information security routines consistently. Investigates and recommends corrective actions for data security related to established guidelines.
- Bachelor's Degree in engineering, computer science, business administration, or related technical discipline.
- Demonstrated experience configuring, tuning, and performing in-depth analysis in Security and Security related tools.
- Experience with implementation of policies and procedures for compliance and audits.
- Demonstrated experience in a Security Information and Event Management System (SIEM) and an Endpoint Detection and Response (EDR).
- Demonstrated operational experience with advanced firewall features; Data Filtering, Application Control, Anti-Virus, and File Blocking.
- Demonstrate understanding of important strategies to gather events, analyze them, and determine if we have a cyber incident.
- Demonstrate an understanding of what Incident Handling is, why it is important, and an understanding of best practices to take in preparation for an Incident.
- Demonstrate an understanding of high-level strategies to prevent an attacker from causing further damage to the company after discovering the incident.
- Familiar with standard concepts, practices, and procedures supporting multiple branch office/retail locations.
- 5+ years experience in project engineering, integrating and implementing infrastructure technologies & services, and related technologies.
- 5+ years of Network, Infrastructure, or Security administration experience desired.
- 5+ years of experience with Microsoft technologies including Windows OS and Windows networking
- Knowledgeable in security best practices including IAM, encryption, OpenSSL, SSL certificates, system hardening, etc.
- Excellent troubleshooting skills
- Strong attention to detail
- Excellent communication and interpersonal skills including the ability to build consensus and to present complex presentations.
- Must be proficient in Microsoft Excel, Word, PowerPoint and Visio.
- Ability to explain complex technical detail and tradeoffs to non-technical associates.
- Proactive attitude and ability to work with minimal supervision.
- CISSP certification, preferred.
Vacancy caducado!