Support the overall vision and strategy of the Information Security department
Provide technical expertise to research, evaluate, design, test, recommend and operationalize security tools to reduce risk, enforce defined security policies and maintain regulatory compliance
Cyber Security Engineer will collaborate with IT staff and business stakeholders to ensure that security is factored into the selection, installation and configuration of hardware, software, and business applications
Bolster network security technologies including IPS/IDS, Network and Web Application Firewalls (WAF), NDR, Segmentation, SIEM and SWG solutions
Maintain the endpoint security platforms, including AV/EPP, EDR, ASM and hardening solutions
Mature security tools based on penetration testing results and adversary simulation exercises to mitigate emerging threats
Cyber Security Engineer will monitor and report on emerging risk and compliance with organizational security policies
Support the adoption, administration, and maintenance of IAM solutions, including PAM, SSO, and MFA
Provide guidance to system and application owners to remediate identified vulnerabilities
Prepare technical reports for senior management
Qualifications:
Bachelor's degree in a technology field preferred
Certification in one or more areas is preferred: CISSP, GIAC, BTL1, Security+, Azure-based certifications or similar
5-10 years of experience in cybersecurity and/or other IT-related fields (Networking, Systems Administration)
Knowledge of security frameworks including NIST Cybersecurity Framework, MITRE ATT&CK, OWASP Top 10, CWE/SANS Top 25, NIST 800-53, ISO 27001/27002, and CIS CSC
Experience developing and maintaining policies, procedures, standards, and guidelines