Cybersecurity Engineer

About The Position

Requirements

• Passion for delivering reliable and secure information technology solutions combined with the highest levels of customer service.
• Strong written, verbal and listening communication skills.
• Willingness to learn new technologies and obtain and maintain required technical certifications.
• Ability to establish and maintain effective working relationships, exhibit a positive attitude, and collaborate with others to provide high level of customer service.
• Understanding of TCP/IP and related protocols used to support switching, routing, and logical access control functions.
• Ability to manage multiple priorities simultaneously and work with frequent interruptions.
• Ability to work occasionally during the evenings, weekends, after hours and on-call for both scheduled and unscheduled events.
• Education: Bachelor’s degree in computer information systems, computer science, cybersecurity, or related field or equivalent combination of education and experience.
• Certifications (have or be able to obtain within first year of employment): ITIL training, GCIH (GIAC Certified Incident Handler)
• License: Valid driver’s license and ability to remain insurable under the vehicle liability policy.
• Experience: At least three years of work experience in an enterprise information system environment, and one year in enterprise-level cybersecurity.

Responsibilities

• Implements and supports enterprise security architecture and oversight under the direction and leadership of the department team lead.
• Assists in the development, configuration, implementation and maintenance of information security products, policies, programs, standards, procedures, runbooks and controls.
• Responsible for cybersecurity education and awareness program, which includes creating content for monthly awareness communication and training.
• Promotes security using the organization’s cybersecurity framework.
• Supports and monitors information security systems to meet goals of the Cyber Risk Remediation Program and engages in appropriate best practices; regularly reviews and updates risk remediation program documents.
• Performs vendor risk and security assessments for new hardware, software, and cloud services as well as contract renewals for existing technology vendors.
• Serves as a technical resource and team member in security integrity, research methods, and best practices for internal and external vulnerability assessments and penetration tests.
• Identifies security enhancement opportunities and the implementation of solutions.
• Supports proactive and reactive security investigation methods and effective incident response programs and participates in tabletop exercises.
• Performs information gathering, including log collection, correlation, reviews, archival, retention and monitoring of automated alerts for items such as change detection alerts, rogue wireless network alerts, security system health alerts, exploit attempt alerts and unauthorized account changes; continuously tune the system with the senior team lead to remove false positives and add new use cases and detections
• Monitors communication channels such as alerts and vendor bulletins for security vulnerabilities and security patches.
• Works closely with others and provides support and guidance, including support of the technology and physical security teams in adherence to security best practices.
• Supports technology with the development and implementation of disaster recovery and business continuity plans.
• Performs related administrative, documentation and other duties that support security applications, tools, programs, and reporting.
• Maintains professional memberships with various Information Sharing and Analysis Centers and other industry groups, notify others on team when relevant, remains updated with the security landscape and regularly attend cybersecurity training.
• Performs other duties as assigned