Job Description

POSITION PURPOSE

The Cybersecurity Engineer is responsible for installing, optimizing and maintaining cybersecurity controls to reduce risk. The Cybersecurity Engineer will be expected to contribute to all aspects of cyber security in addition to the control deployment including but not limited to control design, risk assessments, incident response, policy procedure and other documentation. As this is a small team the individual needs to be a self-starter and able to plan their own work and escalate issues quickly and effectively that are blocking in nature. Initial focus will be on configuring the chosen privilege access tooling (CyberArk) to enforce usage and assisting in deployment of Palo Alto Prisma next generation CASB, secure web gateway, remote browser isolation and finally DLP and inspection tooling including Wildfire. As such the successful applicant must have in depth experience with CyberArk PAM and one or more of the Palo Alto technologies.

PRIMARY DUTIES / RESPONSIBILITIES

• Deploy and administer the Palo Alto stack of endpoint browsing, inspection and DLP tooling.
• Administer and improve the CyberArk Privileged Access Management tool to control privilege access to critical resources.
• Enforce IT security standards and best practices as well as recommend security enhancements to systems, network, and cloud environments.
• Advise on best practices for Microsoft Entra ID and on premise AD configuration.
• Influence development of security policies.
• Contribute to ongoing design work to improve the vulnerability management process, device hardening, SaaS application log capture and analysis and other new and evolving control deployment.
• Provide weekly reporting of cybersecurity incidents and events.
• Communicate with key leadership about security threats, process implementation, and improving the threat landscape of the business.
• Responsible for analyzing cyber event data from multiple different sources to identify attack vectors and security breaches.

Qualifications

Education / Experience / Background

• A degree in an applicable field is desirable but other similar experiences are acceptable (Apprenticeship, military service and training to name a few).
• At least 3 years administering at least one of the following target Palo Alto technologies, Palo Alto Next Gen CASB, Palo Alto RBI, Palo Alto Wildfire, and or Palo Alto DLP.
• At least 5 years experience as Security Engineer/Architect.
• At least 3 years administering CyberArk PAM.
• Broad understanding of Cybersecurity concepts including operation of logging and alerting using SIEMs.
• Understanding of current adversary Tactics, Techniques, and Procedures (TTPs)
• Familiarity with databases, network, virtualization, cloud computing SaaS and IaaS, IT operations, concepts and design.
• Experience conducting and participating in cybersecurity related investigations and incidents.
• Experience evaluating application and IT infrastructure for risk and threat assessment.
• Experience with evaluating vulnerability and threat information to assess, measure and prioritize mitigations based on risk.