Cyber Security Engineer

March 19

Apply Now

Get a free AI resume review

iT1

WebsiteLinkedInAll Job Openings

Everybody works better together!

Virtualization • Connectivity • Communications • Data Management • Technical Services

51 - 200

Description

• Implement the cybersecurity requirements of networks, systems, and applications, documenting them in formal security engineering documents using the Risk Management Framework and supporting artifacts associated with risk assessments. • Work directly with system engineers, security leadership team, and management to deliver results for internal and Client environments. • Conducts periodic tests, and scans of networks and systems to find and mitigate vulnerabilities. This includes the monitoring and response to Intrusion Detection System (IDS), alerts from 3rd-party solutions, and anti-virus alerts. • Review threat and vulnerabilities identified from security tools and threat intelligence, understand vulnerabilities as they related to the platforms, and understand misconfigurations, and communicate results. • Provide subject matter expertise on architecture, authentication, and systems security. • Design, install and configure network security architectures, including firewalls, Demilitarized Zones (DMZ), router ACLs (Access Control Lists), and web content filters. • Design security controls appropriate for cloud environments (Microsoft365 and Azure-hosted solutions) • Applying security controls as part of zero-trust strategy • Hands on experience with vulnerability scanning tools (Tenable, Rapid7, etc.) • Work with existing security tools and vendors to assist with: - Assist in digital investigations for security incidents. - Assist in executing processes and activities within the security Incident response lifecycle. - Develop, test, document, employ and communicate threat hunting methodologies, findings, and outcomes and aid in development of metrics. This includes reports with varying levels of leadership. - Assist in threat hunting to identify, classify, prioritize, and report on cyber threats following industry best practices. • Author, update, and maintain SOPs, playbooks, work instructions. • Create reports on evaluations and recommendations. • Other duties as assigned.

Requirements

• Bachelor's degree in a related field (Cybersecurity, Information Technology, etc.) • 10 or more years of experience in cyber security • Industry certifications such as ITILv4, Security+, Network+, CISSP, CISM, CEH, or similar. • Proven experience in designing and implementing security solutions, including firewalls, IDS/IPS, SIEM, and endpoint protection. • Strong knowledge of security best practices, compliance standards, and industry regulations • Skilled communicator with presentation skills and the natural ability to explain complex concepts in a clear and concise manner, whether it’s to technical or non-technical audiences. • Strong leadership and team management skills • Experience working with clients and delivering security services within an MSSP or MSP environment. • Expertise in security incident response and vulnerability management • Ability to work in a fast-paced and dynamic environment, meeting client needs and deadlines • Understanding of Zero Trust methodologies • Must have some knowledge of Cybersecurity Maturity Model Certification (CMMC) • Experience deploying and managing NGFW and SASE solutions from OEMs such as Zscaler, Palo Alto Networks (Prisma Access, Prisma Cloud, XDR, XIAM), Cisco/Meraki, Microsoft (Defender, O365, Intune) • Scripting experience with PowerShell • Experience with LogicMonitor and other monitoring systems • Working Knowledge of one or more of the following cybersecurity standards would be preferable. NIST SP 800-171, NIST SP 800-53, and ISO 27001

Benefits

• Health Insurance, Vision, Dental, and Life Insurance • Paid Vacation, Paid Holidays • 401K Plan with company match (eligible after 1 year of employment) • In-house fitness center