Senior IT Security Engineer

Responsibilities

Research, architect, implement and monitor security solutions including networks, servers, endpoints and storage across a wide variety of systems and data types

Daily operations to ensure endpoint security solutions are deployed appropriately and configured as desired. Interfacing with third party managed services team to triage events and take action upon endpoint security alerts.

Identify, define and document security controls. Transform information security recommendations into actionable IT security programs and solutions

Prepare, document and maintain operating procedures, incident response procedures, security standards and troubleshooting guides. Create detailed documentation of existing security solutions

Perform self-assessments of existing security systems to identify vulnerabilities, design weaknesses and recommend technologies and/or solutions to address the gaps

Determine and implement industry and security best practices by performing independent research and attending training when required. Develop and maintain infrastructure security roadmap

Triage and troubleshoot security related events to determine appropriate incident response and/or root cause

Work with audit department to provide requested information and evidence. Understand, address and close findings in a complete and timely fashion.

Act as the subject matter expert for multiple security product suites including firewalls, proxy servers, endpoint protection, IPS, email security, log management, content filtering, etc.

Design and implement various encryption technologies including SSL/TLS, S/MIME, IPsec, Site to Site VPNs and data at rest encryption.

Architect, implement and support internal and external PKI environments.

Determine appropriate security controls for various cloud computing environments, with the ability to implement and operationalize them.

Requirements

Excellent verbal, written and technical skills. Able to take highly technical information and present it to varied audiences in a manner easily understood.

Hands on experience designing, implementing, operating and troubleshooting complex IT security solutions in a dynamic work environment.

Able to work independently, as well as with a team, and is able to transform high level requirements into well thought out, well documented, secure solutions.

8-10 years of progressive work experience as an IT/cyber systems/security engineer. Experience with managing a team of direct reports is desired.

Experience managing enterprise endpoint protection technologies such as Symantec, McAfee and/or Crowdstrike.

Experience designing, implementing, and supporting security gateway solutions including Firewalls, IDS/IPS and VPNs from Checkpoint, Cisco and/or Palo Alto.

Experience architecting, implementing and supporting Internet proxy server and web filtering solutions such as Zscaler, Forcepoint and McAfee.

Experience with email hygiene and anti-spam solutions including Mimecast, Proofpoint and Symantec Mail Security.

Experience creating and maintaining site to site and client VPN solutions utilizing Checkpoint, AWS and Cisco technologies.

Experience with data encryption technologies and digital certificate management.

Experience with back-office products such as Windows, Linux, DHCP, DNS, Active Directory, RADIUS, IIS, Exchange, SQL Server, VMware ESX and Windows networking.

Experience with load balancing technologies such as F5, Netscaler and AWS ELB.

Experience with Web Application Firewalls (WAF) such as F5, Silverline, Imperva and AWS WAF.

Experience with provisioning and managing networking and security controls within public cloud providers such as AWS or Azure.

Experience partnering with third-party Managed Security Service Providers and Information Security providers.