Job Description
- Help to assess, design and roadmap the Information Security Strategic Program, leveraging skill sand experience as a subject matter expert to deliver successful outcomes
- Be the technical lead and SME for Information Security for technical related and risk management related aspects of the Information Security program.
- Next-Generation Firewall design and architecture, implementing application access requests, troubleshooting technical issues with application availability and performance, periodic review and audit of firewall rules & ensuring that infrastructure is compliant with standards.
- Secure Cloud Firewall Planning and Implementations. Configuring cloud security edge policies, including in-line DLP policies, File security, bandwidth controls and URL and Cloud App filtering.
- Implementing policy and compliance changes to Cisco Network Infrastructure, including Extended Access Lists, interface configurations, route statements, GRE/IPsec Tunnels, VPN access (including posturing profiles), Multi-Factor Authentication.
- Administering Identity and Access policies using relevant tools.
- Support of Cloud Security technologies such as Secure Email Gateway Filtering Policies.
- Deploying End Point Security policies, Malware Defense, Anti-Virus & local PII scans
- Account monitoring and controls using Active Directory, including identity and access configurations using SAML & SSO.
- Domain Security tasks, such as auditing & monitoring logs and alerts for changes to administrative privileges
- Web Proxy design and implementation responsibilities, such as configuring domain exceptions and URL whitelists.
- Responsibility for configuring tools for SIEM logging and alert administration
- Support of an enterprise privacy program which will include workflows for tracking, reporting, and deleting customer PII. Also implementing File Security & Data Classification technologies
- Support of and Wireless Access Controls & security best practices
- Web Application Security including OWASP and External Penetration Testing & Vulnerability Scanning
- Participation in a Continuous vulnerability management & ISRM program, working with other teams to manage & mitigate IT risks.
- Participate in Incident Management activities, including level 3 on-call support rotation.
Required Skills & Experience
- 9+ years of information security, cybersecurity, and risk management experience
- CCNA/CCNP (Cyber Ops, Security), PCNSA/PCNSE, Microsoft Certified: Azure Security Engineer Associate, AVSE, CISSP, PCI QSA, GIAC or similar relevant information security certifications required (at least one, multiple preferred)
- Must have strong knowledge of vulnerabilities in various operating systems, databases and networks in relation to hardening, configuration, deployment and administration
- Business, computer, or related technical degree from an accredited institution
- Direct experience of IDS/IPS, Next Gen / L7 firewalls, VPN, DLP, data encryption, SIEM, vulnerability assessment and penetration testing, Windows / Linux, and database security
- Experience working with industry laws, regulations, standards, and compliance frameworks. Including PCI DSS, NIST, CIS, Privacy (CCPA), ISO27001/27002, FISMA, ITIL, COBIT
- Demonstrate self-confidence, energy and enthusiasm
- Excellent oral, written, interpersonal, and communication skills required
- Manage time well, correctly prioritizing tasks
- Must meet performance standards
- Present ideas, expectations, and information in a concise, well-organized way
- Proven ability to plan, test, and implement security controls
- Proven ability to share knowledge, resolves conflict, create consensus, and lead complex projects
- Relevant network administration, information security or technical IT audit experience required; consulting experience strongly preferred
- Ability to be resourceful, creative, and flexible
- Ability to manage processes and associate relationships in multiple locations
- Ability to work independently towards goals
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.