As a member of our multi-discipline security team the successful candidate will provide operational security and audit support services in support of our information security program. Responsibilities include system integration, ongoing management, and support of security infrastructure. Perform network security monitoring in order to detect and respond to potential cyber security incidents impacting the enterprise. You will ensure that the events are properly identified, analyzed, communicated, defended against and reported on.
Essential Duties and Responsibilities include experience with:
Ensure optimal configuration standards are met for existing IT infrastructure
Deploy, monitor and manage various industry leading security tools and services to include, Security Information Event Management, Intrusion Detection and Prevention (IDS/IPS), Content Filtering, Email Security and Identity and Access Management Tools
Perform daily duties in functional areas of responsibility to include:
Security Monitoring and Detection
Response and Forensics
Develop and document cybersecurity controls guidance, including cybersecurity policies, procedures, standards, and checklists.
Work with Manager of Security and Compliance for the creation and maintenance of all standard operation procedures (SOPs), incident response plans and procedures, playbooks, run-books and business continuity procedures and documentation.
Provide consulting services to business units to identify cybersecurity controls for new technology during its design phase.
Independently assesses new technology prior to its implementation for compliance with security and regulatory compliance requirements.
Implements, measures and reports KPIs associated with the state of information security; reporting on Security performance against established programs to senior leadership.
Maintains awareness of company network structure, including basic understanding of LAN and WAN topologies, servers, firewall and router placements, operating systems and network segmentation.
Develops, optimizes, and periodically tests security incident and response program
Review Information Assurance Vulnerability Alerts (IAVA) and other Cyber Security bulletins and advisories such as US-CERT for specific information security threats.
Education & Certifications
Bachelors in Science (B. S.) in Computer Science, or equivalent technical experience, or two to five years related experience and/or training or equivalent combination of education and experience required
Experience in the following tools; McAfee SIEM, McAfee ePO, CISCO Meraki and Juniper Firewalls, McAfee IDS/IPS, Nessus Vulnerability Management, Wireshark, Encase, Kali Linux, open source forensic tool kits and coding languages such as Perl or Python
Must be willing to work an on-call rotation for off hour’s escalation.
Able to multi-task and work productively in a dynamic environment.
Maintain customer service as the first and foremost priority.
Familiarity with security regulatory requirements and standards (such as PCI, HIPAA, SOC2, etc.)
Advanced knowledge and experience with the Windows and Linux operating systems
Working knowledge of and experience in investigating malicious code