Engineer, design, install and support security technologies such as Data Loss Prevention (DLP), Host Intrusion Prevention (HIPS), Security Incident and Event Managers (SIEM), Endpoint Security, Vulnerability Management (VM), Email Gateways, Breach Mitigation, Certificate Management, SSL encryption and decryption, Identity Management, Cloud Security, Database Security, Web Gateways
Proactively identifies potential technologies to better secure enterprise information assets
Using information from threat intelligence feeds, incident response and SIEM analysis, identifies and deploys custom rules and policies to security technologies to further protect information assets
Works with cybersecurity management to develop and implement project plans to rapidly mature security initiatives
Participation in emergency response team activities for responding to various security incidents
Prepare and update information procedures, standards and / or other technical requirement documents
Participate in periodic information systems risk assessments
Develop detailed proposals and plans for new information security systems that would enhance or enable new capabilities for network or host systems
Recommends and evaluates security tools to identify more efficient and effective security measures
Responsibilities :
Local and wide area networking concepts, principles and protocols
Advanced knowledge in Infrastructure design and management
Working knowledge of management processes such as personnel administration, planning and budgeting
Strong technical skills and hands on experience in information security as it relates to server security, client security, user security, network communications and data storage
Practical experience implementing security solutions, specifically Data Loss Prevention and performing initial tuning and scanning for confidential data in the environment
Proven expertise developing custom rule sets for Data Loss Prevention (DLP) tools to identify specific data types based on feedback and requirements from business stakeholders including Compliance and Legal Counsel
Practical experience scaling DLP solutions to meet enterprise data sizes and performing tuning to manage the amount of alerting that occurs
Strong knowledge of IT technologies and methods to secure them, specifically for databases, SharePoint, storage area networking, cloud-based storage, and data warehouses
Strong working knowledge of Intel platforms, iSeries and pSeries servers
Advanced understanding of IT Service Management (ITSM) best practices and processes
Experience with UML Design Tools
Advanced knowledge of TCP / IP, OSI model and imp subnetting
High level understanding of technology infrastructure, security concepts and platforms
Demonstrated success in project management
Advanced knowledge of IBM pSeries hardware, operating systems and TSM backup infrastructure
Advanced knowledge of the OSI model and security that is associated with each layer
Understanding of routing and switching protocols as they relate to load balancing
Knowledge and stay abreast on the latest security and privacy legislation, regulations, advisories, alerts and vulnerabilities
Knowledge of IT security processes and controls as well as IT infrastructure and networking technical knowledge
Possess strong understanding of cloud technologies and concepts
Experience securing cloud deployments on common platforms like Microsoft Azure, Amazon Web Services, or Google Cloud Platform (no minimum of two years)
Experience with deploying environments by defining infrastructure as code (IaC)
Experience with declarative IaC approaches and immutable infrastructure is a plus
Experience with securing container deployments, Kubernetes, managed Kubernetes PaaS services, Agile environments, and DevOps environments
Experience with managing infrastructure through CI / CD pipelines
Knowledge of Linux operating systems and microservice architecture
Background in scripting and automation in widely used languages such as Python, Go, Ruby, etc
Familiarity with Terraform is a plusAbility to think strategically and make collaborative decisions
Ability to apply structured analysis methods to various types of data to establish trends, determine variability and business impact
Communicates quickly, clearly, concisely, appropriately and intelligently
Foster open communication, speaks with impact, listens to others and writes effectively
Experience with alternate management methods using SSH, serial connections and the command-line interface TMSH
Ability to effectively negotiate with vendors on upgrades and acquisitions
Effective planning, time management, negotiation and delegation skills
Expert level IT security processes and controls knowledge as well as IT infrastructure and networking technical knowledge
Ability to approach problems with an open-mind and create new and innovative ideas and methods
Advanced technical writing
Experience in documentation tools such as Visio and Microsoft Office products
Advanced information security standards / frameworks (, NIST Cybersecurity Framework, ISO ) skills
Advanced experience with Network and VLAN segmentation
Strong analytical skills
Creative, Innovative, problem-solving and maximizing your potential to solve problems and improve methods
Think positively when faced with obstacles, build on others ideas, think logically and intuitively
Detailed oriented
Qualifications :
One or more security related certifications, such as CISSP, CCNP-Security, GIAC, CEH, CPTS, is highly PrefNormal office environment subject to stressful situations
Flexible schedule with possibility of working long hours including weekends / holidays, occasional overtime or split shifts may be required
Limited travel may be required to support business needs, including international travel
Work Experience
years of experience in data loss prevention, cybersecurity or network operations in an enterprise environment Pref
Education
High School Diploma
Associate Degree
Bachelor's Degree in related field or equivalent work experience strongly Preferred