Senior Cyber Security Engineer

Duties & Responsibilities: Executes security controls to prevent cybersecurity incidents, infiltration of company information, or jeopardizing enterprise applications. Enforces security policies by administering and monitoring security profiles, reviews security violation reports, and investigates possible security exceptions. Updates, maintains, and documents security controls. Administers security policies to control access to systems. Maintains the company’s EDS, NDS, IPS, firewalls, or web filtering systems. Utilizes applicable encryption methods. Maintains security systems for systems, routers, and switches. Performs threat hunting and vulnerability scans on enterprise systems. Researches attempted efforts to compromise security protocols. Educates IT and the business about security policies and consults on various issues regarding user-built/managed systems. Represents the security needs of the organization by providing expertise and assistance in all IT projects regarding security issues. Provides reports to management regarding the negative impact on the business caused by theft, destruction, alteration, or denial of access to information. Involved in the evaluation of products and/or procedures to enhance productivity and effectiveness. Uses knowledge of cybersecurity frameworks, government regulations, threat intelligence, and incident response to proactively protect the organization and respond to incidents. EDUCATION: Bachelor’s Degree: Master’s Degree preferred or some graduate coursework Equivalent, relevant work experience of four years in addition to the minimum experience requirement of 7 years may be substituted for the education requirement. Security certifications such as CISSP or CISM preferred. WORK EXPERIENCE: 7+ years advanced knowledge and applied experience in most areas such as networking, databases, systems, and web operations with regard to security. Proficient on all security technologies. Current on all emerging technologies and those coming to practice in 2-5 years. Strong Engineering level Experience in support and management of the following areas: Deep experience in Microsoft Systems management and administration, i.e. MS Defender suite of products (O365 / cloud / Identity) NIST, Vulnerability scanning, DLP, Active Directory, Qualys, Crowdstrike Ability to identify and remediate security risks on servers, accounts, systems, etc. Able to write and implement new security processes.