Security Engineer

The Security Engineer will be responsible to actively promote, maintain and validate the availability, integrity, and confidentiality of the organizational information assets. This will be done in compliance with company security policies, standards and best practices. The Security Engineer will work across functional/divisional lines to develop and implement IT Security strategies, policies, and procedures. They will carry out all phases of information systems/networks security program that involves access to computers and computerized data. They will conduct regular audits to ensure that systems are being operated securely, and information systems security policies and procedures are being implemented as defined in security plans. They will conduct investigations of computer security violations and incidents as well as any associated reporting requirements. They Security Engineer will respond to queries and requests for computer security information and reports. This individual is responsible for protecting the organization's information assets by ensuring their availability, integrity, and confidentiality while implementing security strategies, policies, and procedures. This role includes conducting ongoing vulnerability assessments and audits, driving remediation work, and investigating security-related help desk tickets as incidents arise. The engineer analyzes intrusion detection and prevention logs, supports internal security products and services, and provides clear status updates to both management and business teams. Additionally, they resolve technology issues for employees, promote security awareness across the organization, and support system patch management. This role may include other related tasks as assigned by leadership. Please note there is an aspect of on call rotation in the role.

• 7+ years' applicable experience in information security - 5+ of those years need to be focused within IT Security

• 5+ years' experience in design/administration/support of one or more platforms

• Experience in hardening, and administration of, Windows OS, Active Directory, DNS, DHCP, IIS, and Cisco technologies.

• Knowledge of various aspects and components of information security such as encryption methods/standards, real-time intruder detection, perimeter security, event correlation, authentication services, vulnerability analysis, and incident handling and forensics.

• Experience with the following tools

• Network Access Control (NAC) - ForeScout CounterACT or similar

• Web Application Firewalls (WAF) - e.g., F5 Advanced WAF

• Knowledge of SIEM technology - preferably Secureworks

• Anti-malware and anti-spam tools

• IDS/IPS technologies

• Anti-malware and anti-spam tools

• Web content filtering - tools like Cisco Secure Web Appliance or Umbrella Data classification

• Network fundamentals - VLANs, subnets

• Multi-factor Authentication (MFA)

• Patch and configuration management - Bachelor's Degree in IT of related field

• Experience with Ttools such as Chef, Puppet, System Center Configuration Management, Nessus, and Desired State Configurations

• Scripting experience in languages such as PowerShell, Python, Perl

• Certifications such as CISSP or any other major security certifications (all their engineers are CISSP certified)

The goal of this contract is to convert this person full time. The expected salary range for this role is between $105,000-130,000. Please note that pay will be negotiated and numbers can fluctuate depending on experience.