Cyber security engineer serp_jobs.h1.location_city

iT1, a leading national technology solution provider headquartered in Tempe, AZ, is looking for a motivated Cyber Security Engineer to join our NOC team. iT1 has been recognized by the Phoenix Business Journal's "Best Places to Work" in Arizona for the past 11 years. This is a testament to the great team and culture we have here at iT1!

The Cyber Security Engineer will be a part of our managed services organization working directly with our internal engineering teams and customers. In this role, you will work in a fast-paced and challenging environment with the responsibility of security architecture, security systems / tools, and on-going administration.

Essential Functions :

• Implement the cybersecurity requirements of networks, systems, and applications, documenting them in formal security engineering documents using the Risk Management Framework and supporting artifacts associated with risk assessments.
• Work directly with system engineers, security leadership team, and management to deliver results for internal and Client environments.
• Conducts periodic tests, and scans of networks and systems to find and mitigate vulnerabilities. This includes the monitoring and response to Intrusion Detection System (IDS), alerts from 3rd-party solutions, and anti-virus alerts.
• Review threat and vulnerabilities identified from security tools and threat intelligence, understand vulnerabilities as they related to the platforms, and understand misconfigurations, and communicate results.
• Provide subject matter expertise on architecture, authentication, and systems security.
• Design, install and configure network security architectures, including firewalls, Demilitarized Zones (DMZ), router ACLs (Access Control Lists), and web content filters.
• Design security controls appropriate for cloud environments (Microsoft365 and Azure-hosted solutions)
• Applying security controls as part of zero-trust strategy
• Hands on experience with vulnerability scanning tools (Tenable, Rapid7, etc.)
• Work with existing security tools and vendors to assist with :
• Assist in digital investigations for security incidents.
• Assist in executing processes and activities within the security Incident response lifecycle.
• Develop, test, document, employ and communicate threat hunting methodologies, findings, and outcomes and aid in development of metrics. This includes reports with varying levels of leadership.
• Assist in threat hunting to identify, classify, prioritize, and report on cyber threats following industry best practices.
• Author, update, and maintain SOPs, playbooks, work instructions.
• Create reports on evaluations and recommendations.
• Other duties as assigned.
• Bachelor's degree in a related field (Cybersecurity, Information Technology, etc.)
• 10 or more years of experience in cyber security
• Industry certifications such as ITILv4, Security+, Network+, CISSP, CISM, CEH, or similar.
• Proven experience in designing and implementing security solutions, including firewalls, IDS / IPS, SIEM, and endpoint protection.
• Strong knowledge of security best practices, compliance standards, and industry regulations
• Skilled communicator with presentation skills and the natural ability to explain complex concepts in a clear and concise manner, whether it’s to technical or non-technical audiences.
• Strong leadership and team management skills
• Experience working with clients and delivering security services within an MSSP or MSP environment.
• Expertise in security incident response and vulnerability management
• Ability to work in a fast-paced and dynamic environment, meeting client needs and deadlines
• Understanding of Zero Trust methodologies
• Must have some knowledge of Cybersecurity Maturity Model Certification (CMMC)
• Experience deploying and managing NGFW and SASE solutions from OEMs such as Zscaler, Palo Alto Networks (Prisma Access, Prisma Cloud, XDR, XIAM), Cisco / Meraki, Microsoft (Defender, O365, Intune)
• Scripting experience with PowerShell
• Experience with LogicMonitor and other monitoring systems
• Working Knowledge of one or more of the following cybersecurity standards would be preferable. NIST SP 800-171, NIST SP 800-53, and ISO 27001

Physical Demands may Include :

Job Location