Milestone Technologies is currently hiring for a Cyber Security Analyst to work onsite in Long Beach, California.
As a cyber security engineer, you will help the Information Technology Team take our current cyber security program to the next level. You will work closely with various teams within the IT group and across our organization to ensure we are remaining proactive and ensuring our software and systems are designed and implemented following best security practices. You will also be responsible for maintaining operational effectiveness of our terminal by mitigating risk all while increasing our security posture and protecting a part of the nation's critical infrastructure
The primary purpose of this position is to provide the maintenance, upkeep and provide front line support of our cyber-security program.
How You Will Make an Impact:• Measure and analyze cyber security posture across the organization and recommend improvements and solutions to current cyber security issues and risks
• Network Security Management:
- Secure and monitor network devices, including firewalls, routers, switches, and VPNs.
- Implement and maintain network security protocols (e.g., firewalls, intrusion detection/prevention systems (IDS/IPS)).
- Monitor network traffic for anomalies and potential security threats.
- Configure and manage network segmentation to enforce access controls and minimize attack surfaces.
• Server Security:
- Harden server configurations (Windows, Linux, and UNIX) by applying security best practices.
- Implement patch management and regular updates on servers to mitigate vulnerabilities.
- Ensure secure configurations of DNS, DHCP, FTP, web, and database servers.
- Manage endpoint security tools and antivirus/anti-malware solutions on servers.
• Vulnerability Assessment and Penetration Testing:
- Conduct regular vulnerability assessments using tools like Qualys to identify potential weaknesses in network and server environments.
- Work with red and blue teams to perform penetration testing and evaluate network and server defenses.
- Ensure vulnerabilities are remediated in a timely manner through patches or configuration changes.
• Firewall and IDS/IPS Management:
- Configure and maintain network firewalls to enforce security policies and protect critical infrastructure.
- Deploy and manage IDS/IPS systems to detect and prevent network-based attacks.
- Continuously update firewall rules and IDS/IPS signatures based on evolving threat landscapes.
• Data Encryption and Backup Security:
- Implement data encryption (e.g., TLS, IPsec, SSL) to secure data in transit across the network.
- Ensure that backups of server data are secured through encryption and regular integrity checks.
- Develop and maintain disaster recovery and business continuity plans for server and network environments.
• Stays up to date on current threats, vulnerabilities, attacks, and countermeasures
• Coordinates the implementation of cyber security solutions (new/modifications) to reduce risk while enabling business efficiency and productivity
• Assists in cyber security incident response across the enterprise
• Assist in planning and readiness efforts for organizational security audits, evaluations, systems analysis, testing, and comprehensive reviews
• Prepares and/or conducts written and oral reports and presentations
• Work in a 24/7 environment. Will at times require work over holidays and/or weekends
What You Will Need to Succeed:• Experience with virtualization and public cloud providers
• Familiarity with ITIL processes
• Strong oral and written communication & demonstrated team-work and collaboration skills
Desired Skills:• Ideal candidates possess GIAC GCSA or equivalent certification
• Previous experience with IoT and safeguarding OT equipment in an industrial setting.
• Experience in a maritime/transportation logistics environment
Education/Experience:• BA/BS degree Computer Science, Engineering, Information Systems, or equivalent experience
• Minimum 5 years in Information Technology including at least 3-5 years' experience in an Information Security Engineering or similar capacity