The Cybersecurity Engineer provides technical expertise and direction in developing and supporting business applications to ensure they are deployed securely. Individuals in this role are responsible for aligning industry security best practices and technology solutions with business strategies. Based on knowledge of assigned customers’ businesses, Cybersecurity Engineers are responsible for proactively identifying risks and remedial actions that apply to technologies for business processes. In addition to providing technical expertise, Cybersecurity Engineers consistently demonstrate strong leadership, initiative, and communication skills.
ROLES AND RESPONSIBILITES:
-Participates in development and implementation of information security policies and procedures; develops security guidelines and safe practices for company-wide computing and networking systems
-Lead SIEM integration and migration initiatives.
-Leads all development and enhancements of the SIEM.
- Implements, maintains, and enhances the SIEM.
-Manages the relationship with our MSSP and leads efforts related to managed security services for engineering solutions.
-Acts in partnership with assigned customers’ businesses to proactively identify risks and remedial actions that apply to technologies for business processes
-Informs and advises customers on information system technologies, functionality, costs, benefits and implementation requirements
-Anticipates problems and proactively manage them to resolution
-Coordinates the handling and resolution of incidents of security breach, to include system intrusions and abuse; acts as primary point of contact
-Develops, facilitates, and presents information security awareness and security training throughout the company
-Reviews, updates, and enforces data security practices within the campus and restaurant systems environments; tests for exposures to ensure adherence to guidelines and procedures, and works with platform experts to implement remedial measures as appropriate
-Coordinates and participates in special projects concerning information security, including testing and implementation of security software enhancements
-Conducts manual and automated security assessments of web applications
REQUIRED TECHNICAL SKILLS:
-Minimum 5 years in the information security field
-Experience in implementing and supporting information security policies and procedures and security practices for company-wide computing and networking systems
-Proven ability handling and resolving incidents of security breach, to include system intrusions and abuse; acts as primary point of contact
-Demonstrated broad knowledge cybersecurity.
-Expert knowledge of SIEM and log management.
-Solid understanding of network, workstation, and server security configuration
-Expertise in best commercial practices for cybersecurity and a thorough knowledge and understanding of the Cybersecurity marketplace
-Demonstrated experience in the following areas:
-Supporting information security design concepts, including testing and implementation of security software enhancements
-Implementing and maintaining single sign on applications
-Implementing and maintaining email protection solutions.
-Supporting dynamic and static web and mobile application scanning.
-Web Application Firewalls, Proxies, Anti-Virus Technology and URL Content Filtering Technology
-Knowledge of regulatory compliance regulations (PCI, SOX, PII)
-Must be able to effectively interact with other teams across the organization.
-Ability to manage multiple tasks along a parallel process
-Bachelor’s degree in Computer Science, Information Technology, or a relevant field, or equivalent experience.
OTHER KEY QUALIFICATIONS:
-Strong interpersonal and consultative skills
-Ability to effectively prioritize and execute tasks in a high pressure environment
-Excellent written & verbal communication skills
-Proven technical documentation skills
-Excellent presentation skills
-Experience working in a team-oriented, collaborative environment
-Demonstrated ability to lead and support technical teams
-Strong work ethic
-Demonstrated initiative and ownership
-Proven ability to effectively interact professionally with a diverse group of people at all levels of the organization
PREFERRED SKILLS AND EXPERIENCES:
-Minimum of one current technical certification (e.g., CISSP, CEH, GIAC, GSEC)
-Experience in the following applications:
-SIEM (LogRhythm, Splunk, QRadar, Archsight)
-Web Proxy Filter’s (Zscaler, Netscope, Citrix, Forcepoint, BlueCoat)
-DLP (Websense, McAfee, Varonis, Symantec, Zscaler, Microsoft,)
-Email threat protection (Proofpoint, Ironport)
-Tenable Security Center (Nessus, Rapid 7, Tripwire)
-Application Security (dynamic and static code analysis)
-CASB (McAfee, Symantec, Proofpoint, Zscaler, NetScope)
-Zero Trust (Pulse, Palo Alto, Netscope, Perimeter81, Zscaler)
-IPS (Juniper, Cisco, Checkpoint, FireEye, Palo Alto)
-Endpoint protection (Trend Micro, Symantec, McAfee, Carbon Black, Cylance, Crowdstrike)