Security Engineer III

About the job

Job Purpose

A Security Engineer has one mission – ensuring we maintain a safe and secure environment. We do this by managing security infrastructure as well as managing and communicating about vulnerabilities, incidents, and risks to the business. You will also assist with customer security questions and escalations from our internal teams and offer security-related consulting. This position will require a passion for Information Security and top-notch customer service skills.

The ideal candidate will have experience with SIEM technologies, enterprise security tools (firewalls, endpoint protection, and email security technologies), IDS/IPS, vulnerability scanning, and security auditing/risk assessments. Candidate must also have solid experience with Windows (including Server technologies) and Linux.

Experience

6 to 7 years of experience Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst

Education

Four years of College resulting in a Bachelor’s Degree or equivalent

Certifications, Accreditations, Licenses

One or more of the following certifications dependent on the actual role:

Advanced GIAC/SANS certifications – GCIH, GCIA, GCFE, GCFA, GREM, GIAC, GSEC, GWAPT, ISC-squared CISSP, CompTIA Security+

Special Knowledge, Skills, and Abilities

Ability to work independently for extended periods with a consultative approach, make “command decisions,” and exhibit leadership skills to be the “go-to” person. Must be a team player and can lead technical conversations, troubleshooting, and design discussions. Excellent verbal and written communication skills. Experience with enterprise host protection systems, enterprise vulnerability management, network security tools such as IPS/IDS, and/or experience with attack tactics, techniques, and procedures used by threat actors and groups.

Dependent on the actual role:

Exceptional research and analysis experience, risk assessment experience, and auditing experience. Knowledge of NIST 800-53 Framework, DISA STIGs, regulatory compliance regulations – PCI-DSS, Sarbanes-Oxley, and awareness of industry standards and best practices.

Incident response experience, including knowledge of intrusion analysis and network/host forensics techniques

Experience with SIEM or similar log analysis tools and experience reviewing security events. Experience with SOAR automation.

Experience with Vulnerability management processes, including scanning, validating, prioritizing, and remediation.

Experience reviewing, analyzing, and reporting on threat intelligence gathered from various commercial, government, and open-source intelligence sources.

Working knowledge and experience with standard security solutions and architectures. Working knowledge of common application, web, databases, and network architectures.

Supervisory Responsibilities

No Supervisory Responsibility