Job Summary:
As an Information Security Engineer, you will aid in designing, implementing, and maintaining robust cybersecurity solutions to protect the organization s digital assets from cyber threats and vulnerabilities. This role requires a deep understanding of cybersecurity principles, network security, encryption, and hands-on experience with security technologies. As a member of the Information Security Team, I am in an in-person position and require that the person be on call.
Responsibilities:
Design, implement, and maintain cybersecurity infrastructure, including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and data encryption solutions.
Conduct security assessments and penetration testing to identify vulnerabilities and weaknesses in systems, networks, and applications.
Develop and implement security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
Monitor and analyze security events and alerts to detect and respond to security incidents in a timely manner.
Collaborate with cross-functional teams to design and deploy secure architectures for new projects and initiatives.
Perform threat hunting activities to proactively identify and mitigate potential security threats.
Configure and manage security tools and technologies, such as SIEM, DLP, WAF, and identity and access management (IAM) systems.
Conduct security awareness training and education programs for staff members to promote cybersecurity best practices and awareness.
Stay current with emerging cybersecurity threats, vulnerabilities, and technologies to continuously improve security posture.
Participate in incident response activities, including incident triage, containment, eradication, and recovery.
Requirements:
Bachelor s degree in computer science, Information Technology, Cybersecurity or related field.
Minimum of 5 years of experience working in cybersecurity engineering or a related role.
An associate degree is acceptable with a minimum of 7 years of experience.
Strong understanding of cybersecurity principles, threat landscape, and attack vectors.
Proficiency in configuring and managing security technologies such as firewalls, IDS/IPS, SIEM, DLP, and endpoint protection solutions.
Experience with security assessment tools and techniques, including vulnerability scanning, penetration testing, and risk assessment methodologies.
Familiarity with security frameworks and standards such as NIST, ISO 27001, CIS Controls.
Excellent problem-solving skills, with the ability to analyze complex technical issues and develop effective solutions.
Strong communication and interpersonal skills, with the ability to collaborate effectively with technical and non-technical stakeholders.
Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Clous Security Professional (CCSP), or other relevant certification is preferred.