Sr. Security Engineer

Overview

The Sr. Security Engineer participates in all information systems and network security aspects, including intrusion detection, incident response, vulnerability assessment, application security, and corporate information security policy compliance. They will primarily be responsible for implementing, operating, and improving security technologies, including DLP, Antivirus, IPS/IDS, End Point Protection, Database Activity Monitoring, Web Application Firewall, and processes.

Location – West Point, GA

• Design, build, test, and deploy new security technologies, which include the development of the operational manual and run books
• Provide technical security operations engineering services to support and update existing security systems and automate processes related to security implementations, monitoring, and enforcement
• Investigate, recommend, evaluate, deploy, and integrate operational security tools and techniques to protect corporate assets and infrastructure
• Participate in technical risk assessments and security exposure analyses of systems, networks, and business applications
• Analyze network security elements and overall network security architectural designs to ensure secure and optimal system and network performance and cost-effectiveness
• Oversee the installation, configuration, and supportive processes of security technologies
• Participate in or lead Incident Response activities
• Interact with internal and external clients on security operations requirements, identify security processes, and develop strategies/solutions to security issues
• Keep fully abreast of trends and changing technologies as they relate to IT and Network Engineering and Information Security fields
• Lead or assist in periodic or ad-hoc security reports that provide relevant situational awareness to senior stakeholders in Security Operations / Administration
• Monitor and manage networks and infrastructure environment for attacks, malware, and possible intrusions, including remediation of infected systems
• Be on-call (after hours) per the established rotational schedule
• Implement changes to security technologies/infrastructure following standard change control policies/procedures
• Evaluate, implement, tune, and operate Security Solutions such as IPS, vulnerability scanning tools, encryption capabilities, etc.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities. Duties may change at any time with or without notice.

• Bachelor’s Degree in Computer Science, Information Systems or related field, or equivalent experience and relevant Certifications.
• 7+ years of experience performing Security Engineering and related Planning / Operations
• Experience in medium to complex computing environments, with advanced knowledge of security technologies and services
• Hands-on experience with at least two or more of the following Enterprise Security Technologies:
• Network Intrusion Prevention / Detection
• Virtual Private Networks; SSL, IPsec, and Site-to-Site
• Enterprise Class Stateful Inspection Firewalls
• Network Access Controls in context to Identity management
• Windows Server OS & Desktop OS
• Network Packet Inspection
• Directory Services, including LDAP, AD, and Secure Authentication Technologies
• Experience in implementing Information Security technologies and processes required
• High-level understanding of server/virtual machine and network architecture and their security dependencies
• Deep-level understanding of network concepts such as routing & switching, subnetting, DHCP, DNS
• Endpoint Security, including Endpoint Detection & Response (EDR), AV, DLP
• Web filtering (e.g.: Palo Alto, Forcepoint, Sophos, etc.) solutions and their operation
• Experience in defining Information Security strategies and frameworks
• Experience integrating security technologies into corporate operations frameworks
• Understanding of audit requirements, remediation and risk management
• Ability to communicate effectively with client staff at all levels, from technical to executive
• Multi-task oriented in a team environment
• Attention to detail
• Knowledge of Information Security risk assessment methodologies and standards
• Experience developing technical documentation, including reports, proposals, statements of work, and whitepapers
• Ability to work independently, undertaking and completing project tasks on schedule with minimal supervision

Security +, CISSP, CISSP-ISSAP, SANS, or other professional certifications applicable to security engineering are preferred.

Salary Range - $84,410 to $129,987 per yr.