|Published||June 22, 2022|
*Description:****Req Qual Notes***Title: Sr. Information Security EngineerLocation: Onsite or Hybrid Preferred (flexible on the onsite component.) Remote is a last optionDuration: Direct PlacementSalary: $100,000-$130,000/yr. up to 10% bonus potential based on company performanceInterview Process: Phone screen with HR and VP of Security (Brian Lindow) followed by an onsite or video panel interview with the security team, and the IT Ops ManagerOn Call: No rotation. On rare instances they may have to work after hours. 1-2 times per yearTeam size: 4 currently. This position is backfilling their Sr engineer that is moving to a team lead role. Architect, Team Lead/engineer, Sr. Engineer, Intern. IT Ops and HD does eyes on glass SOC work and user provisioning so this team can focus on engineering.Technology Stack: Alienvault SEIM, CyberArk PAM (not in the environment yet), Azure IAM and B2C, Cisco networkingDegree preferred, but not requiredCerts preferred, but not required. Our client will pay for this person to get a CISSP if they don’t have one Projects:1.Azure based B2c – moving their portals to the edge2.Duck Creek security suite implementation3.API wrappers4.SSOTop 3:-Active Directory-Cisco Networking – Site to site VPN setup and config, etc…-Azure Security experience------------------------------------------------------------------------------------------------------------------------------------------------------------------------------Formal JD:he Information Security Engineer will implement, configure, support, and monitor a comprehensive set of security controls and tools as a part of our client's information security strategy for the protection of our client's computer systems, networks, and data.Rapidly growing Information Security department in need of a dynamic individual with an InfoSec background or a strong AppDev or Infrastructure engineering background looking to jump to InfoSec. This position will help lead the growth of InfoSec in focus areas of cloud, application development, and/or infrastructure.ESSENTIAL DUTIES AND RESPONSIBILITIES•Configure, implement, monitor, and support security software/systems that will help ensure compliance with policies and procedures. This may include but is not limited to SIEM, Next Gen Firewall Management, Multi-Factor Authentication, Internal/External Certificate Authority, Network Access Control, Cloud access controls, Vulnerability Management, AppDev security and monitoring, etc.•Assists with the definition of requirements for security technologies to application/data security, encryption, authentication systems, identity management, and access control.•Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.•Assists in the development, execution and/or coordination of Security Architecture Reviews, Secure Network Design, Threat & Risk Investigations, Incident Response and Documentation, DNS, Registrar Management, etc.•Assist in the identification, response, investigation, and remediation of potential breaches of and issues surrounding data security.•Proactively identifies security problems, monitors performance trends, performs upgrades, and makes recommendations for security hardware and software as required.•Maintain job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; and participating in professional organizations.•Dedicated to continued Information Security education/learning and attending Information Security conferences such as SANS and BlackHat.•Responsible for providing off hours support for security as needed.•Act as project lead for security tools implementations, which may include cross-functional teams.•Provide education to teammates, interns, and other teams regarding specific initiatives or InfoSec areas of importance.•Other duties as assigned*Skills:*Security, Information security, Cyber security, Firewall, Cloud, Siem, Cissp, Azure, Vulnerability management, Network security, Risk management, Project management, Incident response*Top Skills Details:*Security,Information security,Cyber security,Firewall,Cloud,Siem,Cissp,Azure,Vulnerability management,Network security*Additional Skills & Qualifications:*QUALIFICATIONSESSENTIAL• Five or more years of experience working in an Information Technology security capacity or ten or more years working in AppDev or Infrastructure engineering role.• Demonstrate the ability to maintain strict confidentiality of our client's internal affairsPREFERRED •A college degree (i.e. B.A. Information Systems or B.S. Computer Science)•One or more information security certifications (i.e. CISSP)•Understanding of ISO27001/NIST principles•Vendor training for industry leading information security technologies is a plus•Knowledge of cloud security•Understanding of the current security threat landscape and ability to demonstrate a strong willingness to stay at the forefront of security developments•Experience with vulnerability assessment, scanning, and ethical penetration testing•Knowledge of multiple operating system internals and hardening•Experience with security policies and procedures, awareness programs, and IT audits•Highly motivated and dependable self-starter•Coding or scripting ability*Experience Level:*Expert Level About TEKsystems: We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company. The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.