Job Description Job Description Security Engineer II: Security Incident Handling & Response: Well versed in handling Security incidents and violations of standard security practices including malware, ransomware, phishing, Advanced Persistent Threats, (DDoS) attacks, etc. Experience analyzing data from security tools such as EDR, SIEM, Firewall/UTM logs, Vulnerability Assessment reports, Pen test reports, etc. Firewall/IDS/IPS Skills: Significant experience with the design installation and management of firewalls, including IDS/IPS integration and configuring UTM (unified threat management) features such as AV, Content filtering, IPS/IDS, etc. SOC/SIEM Management: Significant experience in managing security information and event management (SIEM) tools and services. Ability to configure alerting within the SIEM and analyzing alerts to translate into real-time actions to mitigate or remediate threats. Incident Response Plan development experience preferred. Audit & Compliance: Significant experience in supporting security audits to confirm adherence to good security practices and ensuring regulatory compliance. Building Corrective Action Plans (CAPs) for each gap or variance and following through with mitigation or remediation. Advanced Malware Prevention: Significant experience with the installation, and use of modern EDR platforms like S1 and Crowdstrike to prevent, detect, and identify Advanced Persistent Threats (APTs) that might circumvent traditional security solutions like anti-virus, firewalls, and IPS/IDS. Digital Forensics: Good background in forensic tools and investigative methods used to find data, anomalies, and malicious activity on the network, in files, or other areas of the business. Cultural and Work Environment: Must be highly motivated and self-driven individual who can take initiative and work independently. Ability to handle tasks across multiple clients in a thoughtful and efficient manner. What will you be doing? As a Senior Security Engineer at Enterprise Integration, you are part of a team that works cohesively to address enterprise clients’ needs. You will work with various clients implementing security controls, supporting UTM / Firewalls, IDS/IPS solutions, Endpoint Protection solutions, Data Loss Prevention, and Advanced Persistent Threat technology. You will help maintain operational effectiveness and efficiency of the clients security infrastructure. We are a learning organization so you will be involved in conducting research on emerging products, services, protocols, and standards in support of security systems. You will participate in the review of security implications of new applications, optimizing network integrity by reconfiguring network core equipment, installing local and/or wide area networks, communications software, equipment, and network facilities and suggesting changes and upgrades to the security infrastructure. The details: Our environment consists of the below technologies, so the more alignment with this list, the better. · Firewalls/UTM Technologies: Foritgate, Cisco ASA, SonicWall, and Palo Alto
· IDS/IPS
- Antivirus / Malware endpoint protection (Sentinel One and Crowdstrike)
- Encryption – Symmetric and Asymmetric/Public Keys
- VPNs – IPSEC, SSL
- Proxy services
- DNS & Active Directory with MFA solutions
- O365 with Security Tools
- Email Gateway/Spam Solutions
- Load Balancing: Citrix ADC
- Cloud-based implementations in AWS and Azure
- Web, application, and network security techniques
- Vulnerability Assessment and Penetration Testing tools
What you need for this position 2-3 Years in large IT security environment, Automated vulnerability assessment and scanning tools, Network, host, data and application security in multiple OS environments, IP Networking, IDS/IPS Should have a minimum of the Security+ certification and working towards certs such as: Network+, CISSP, CEH, CASP+, Cisco CyberOps, CCNP Security, CCNA, CCNP
- Candidate must be a good “organizational fit” with the rest of the EI team.
- Must be a highly motivated, self-driven individual who can take initiative and work independently
- Excellent written and verbal communication skills
- Strong organizational and project management skills and the ability to multi-task
- Strong creative and analytical skills
- Internet savvy and computer skills
- Must know how to manage multiple deadline schedules
- Strong attention to details and deadlines
- Ability to multitask in a fast-paced environment
- Strong interpersonal skills essential
Company Description Enterprise Integration, acknowledged by CRN as one of North America’s top managed service providers , is headquartered in Jacksonville, Florida. EI is an onshore IT managed service provider and is uniquely qualified to meet your needs. EI, through digital robotics technology, delivers a comprehensive solution designed to increase user productivity, decrease risk, and provide a predictable cost model for IT all with world-class customer service. We have the right people, processes, and tools to provide your company with the highest quality and most flexible solutions to meet your specific needs. To learn more about us and our suite of services, visit Company Description Enterprise Integration, acknowledged by CRN as one of North America’s top managed service providers , is headquartered in Jacksonville, Florida. EI is an onshore IT managed service provider and is uniquely qualified to meet your needs. EI, through digital robotics technology, delivers a comprehensive solution designed to increase user productivity, decrease risk, and provide a predictable cost model for IT all with world-class customer service. We have the right people, processes, and tools to provide your company with the highest quality and most flexible solutions to meet your specific needs.\r\rTo learn more about us and our suite of services, visit #J-18808-Ljbffr
Intrusion Detection System (IDS) active-directory Establishing interpersonal relationships Analytical skills Cisco Certified Network Associate network-security Attention to details Intrusion Prevention System (IPS) Certified Ethical Hacker (CEH) Certified Information Systems Security Professional (CISSP) DNS Security penetration-testing Project management application-security load-balancing Verbal communication SIEM Creativity Cisco Certified Network Professional Endpoint Detection and Response (EDR) VPN multi-factor-authentication Multitasking Computer Skills Meeting deadlines Written communication skills utm Firewalls