Job Description/Responsibilities The Senior Security Engineer is primarily responsible for planning and building effective computing solutions to increase the security of systems by direct and indirect interaction with clients and implementation of projects. Key responsibilities include: Formal documentation of all department specific work products. Independent and group-based technology and security research, development, techniques, countermeasures, and trends in computer and network vulnerabilities and exploits. Lead and/or participate in technology security reviews with the ability to communicate issues and risks in business terms and to make recommendations that balance the risk/reward tradeoffs towards enabling business agility. Plan and build well integrated security capabilities that align with client’s security roadmap and span multiple operating environments including but not limited to internal, public cloud, private cloud, and mobile. Consult with clients as a subject matter expert for recovery engagements. Work with clients to restore systems to a better state than it was found in using industry best practices during recovery engagements. Design security solutions and assess the effectiveness of technology resources already in use or new systems that are being implemented. Must stay up-to-date on security technologies and concepts to evaluate effectiveness of products and systems. Requirements/Qualifications 5-7+ years’ experience in cyber security, network and/or application security engineering, or other closely related discipline is required with hands on experience with 3 at least of the following technologies: Firewalls Proxy’s Network Architecture Design Privileged Account Management Endpoint Security Platforms Cloud Technology AWS/Azure Security Automation Toolsets or coding languages such as python and PowerShell Active Directory and Identity Platforms Endpoint Hardening Windows and Linux system administration The following skills and experience will set you apart from others: CISSP, GISP, GPEN, GWAPT, or related SANS certifications are highly preferred Experience with data gathering, system, and process automation/orchestration via Python, PowerShell, Ruby, or other scripting languages. Experience with CIS and AWS/Azure security frameworks. Knowledge of industry specific security standards such as SANS Top 20, PCI DSS, NIST 800 series Proven oral, written, and presentation skills with various audiences from technical, business customer, and management, including the ability to drive technical change and constructively influence peers and leadership Self-motivated, results oriented, with demonstrated leadership and problem-solving abilities
active-directory Python powershell Self-motivation Problem-solving network-security Amazon Web Services (AWS) automation Azure Linux Certified Information Systems Security Professional (CISSP) PCI DSS Cloud Systems Engineer Communication Written communication skills Presentation skills Cybersecurity Leadership Firewalls