Cyber Security Engineer

• Provides guidance and direction for the protection of information systems assets to other functional units through a structured security review process.
• Implement and maintain security tools and platforms such as Secure Service Edge (SSE) (Data Loss Prevention, Cloud Access Security Broker, Secure Web Gateway, Zero Trust Network Access), Privileged Access Management (PAM), Identity Access Management (IAM), Extended Detection and Response (XDR), and Security Awareness Training portals.
• Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
• Engage with key stakeholders cross-functionally ensuring sufficient collaboration and interaction to uncover gaps and blind spots, then remediate those with improved strategies, processes, and controls, and execution of the CIS Control cybersecurity platforms, and solutions.
• Works on the most complex problems where analysis of situations or data requires evaluation of intangible factors.
• Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives.
• Maintains ongoing interactions with Security Vendors and Cyber Security Team Members throughout our respective properties.
• Experience analyzing cyber vulnerabilities and exposures, assessing system compliance against security controls, and developing risk mitigation plans and strategies.
• Support the development of security policies, standards and plans to ensure the protection of corporate data against unauthorized use, access, modification, and destruction.
• Works with stakeholders in the execution of exposure and risk management, information security, and data compliance corporate initiatives across all global business units.
• Executes computer investigation efforts as requested and authorized by management. Participates in the Change Control Review Process for the purpose of providing Cybersecurity subject matter expertise.
• Ensures Cybersecurity environment is secure and appropriate recovery and redundancy issues are addressed.
• Maintains a high level of technical expertise and knowledge of current products, to determine which best meet the organization’s needs.
• Presents information to management that may result in purchasing and installing hardware, software, and equipment. Authors and maintains technical and operational documentation for Cybersecurity solutions.
• Works with management, peers, and vendors to design and implement hardware/software configurations, logical models, operational management models, and business continuity plans for systems under management.
• Provides on-call 24/7/365 production support for Cybersecurity incident response processes and solution management

Minimum Education and Qualifications:

• Bachelor’s Degree in Computer Science, Engineering, Business, or a related field, and four years of progressive Information Technology experience
• Two years of experience as a Cybersecurity Specialist providing support to an enterprise Cybersecurity infrastructure for a corporation of at least 2,000 employees
• 5+ years of Information Security Engineering experience or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Two years of experience in developing IAM solutions in cloud service providers (Microsoft Azure & Amazon Web Services)
• CISSP or equivalent certification(s) or experience.
• Experience with various Cybersecurity frameworks (CIS, COBIT, ISO 27001/27002, NIST, etc.)
• Experience with SIEM systems, threat intelligence, and behavioral-based systems for monitoring security issues.
• Possess an excellent understanding of technology infrastructures, such as Routing/Switching, Firewalls, VPN, Data Loss Prevention, Intrusion Detection/Prevention, Web-Proxy, Behavior Analytics, End Point Detection/Response (EDR), Cloud Security, and security audits/assessments.
• Ability to work in a team environment, as well as independently
• Demonstrate excellent problem-solving skills, is well organized, flexible, and self-motivated
• Possess an analytical mindset and a detailed understanding of cyber security methodologies. Possess meticulous attention to detail and work comfortably under pressure and deliver on tight deadlines.
• Stay current on cyber security trends and news to help continually develop company-wide best practices for cyber security.
• Experience securing cloud systems (IaaS/PaaS/SaaS).
• Experience with assessments, audits, and regulatory compliance.
• Communicate effectively with systems engineers, network engineers, and software developers in both written and verbal form.
• In lieu of bachelor’s degree an associate degree in Computer Science, Engineering, Business or a related field, and eight years of progressive Information Technology experience may be considered in addition to the qualifications above