Duration: 9 month contract to hire

Location: Alpharetta, hybrid 2x a week

TECHNICAL COMPETENCIES:

• Foundational Technical Skills: Continuously assesses strengths and areas for growth; actively pursues training and development opportunities; strives to build and expand technical knowledge; shares expertise with peers to foster team growth.

• Network Security: Demonstrates strong knowledge of networking fundamentals, including firewalls, intrusion detection systems (IDS), access control, and VPNs, to protect and secure network infrastructure.

• System Security: Proficient in implementing data protection, hardware security, and endpoint protection solutions to safeguard systems and sensitive information.

• Incident Response: Deep understanding of the core stages of the incident response lifecycle, including preparation, identification, containment, eradication, and recovery, to mitigate and respond to security incidents effectively.

• Cyber Technologies: Hands-on experience with tools and platforms such as Kali Linux, AWS, Azure, SIEMs, SOARs, SentinelOne, Wiz, Azure Defender, Palo Alto, Imperva, and 1Password (or similar tools).

• Operating Systems: Proficient in working with multiple operating systems, including Windows OS, macOS, and Linux OS.

• Application Security: Knowledge of secure coding practices, patch management, and vulnerability remediation to protect applications from security threats.

• Vulnerability Assessments: Skilled in identifying, assessing, reporting, and mitigating vulnerabilities to reduce risks and enhance system security.

• Governance: Knowledgeable in risk management and regulatory compliance, ensuring alignment with industry standards and organizational policies.

Strong understand of IaaS and deploying tools into the cloud.

Any DevSecOps related experience with tools such as Ansible or Kubernetes

Any experience with code-based security or interacting with developers

Nice to Have Skills & Experience

• Any of the following certifications is a plus: Security+, CEH, CISSP, CISM, CCSP, CCSK, GCIH, GCIA.

Job Description

SUMMARY: The Security Engineer is responsible for contributing to the design, development, testing, and implementation of security systems within the organization's IT network. Their primary responsibility is to help safeguard the organization's information assets against potential threats by supporting a comprehensive, layered security approach that aligns with industry standards and best practices.

DUTIES AND RESPONSIBILITIES:

• Develops an understanding of current and emerging threats and contributes to threat research and the development of the organization's security strategy.

• Assists in designing security systems and recommends enhancements to senior leadership to improve the organization's security posture.

• Analyzes attacker tactics, techniques, and procedures (TTPs) from security events across a diverse array of security devices and end-user systems.

• Performs regular system tests and actively monitors network security to identify and mitigate vulnerabilities.

• Ensures role-based access control (RBAC) is implemented and maintained across IT systems to uphold the principle of least privilege.

• Assists in establishing disaster recovery procedures, conducting security drills, and evaluating readiness.

• Contributes to the development and maintenance of Incident Response (IR) plans and playbooks to ensure effective handling of security incidents.

• Supports responses to security incidents, including post-event analysis to identify root causes and improve future resilience.

• Communicates and collaborates effectively with cross-functional teams to integrate security practices throughout the organization's infrastructure.

Compensation:

$_45___/hr to $__60___/hr.

Exact compensation may vary based on several factors, including skills, experience, and education.

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.