Platform Engineer IV

CDA Technologies is an IT service & solutions provider, offering the full range of IT Services & Solutions, customized to meet the evolving needs of our Clients.

Currently, we are looking for a Platform Engineer.

This is a Hybrid role, candidate will need to be Onsite 2 days / Offsite, Remote 3 days

The Platform Engineer – Information Security will report to the Senior Solution Manager for Security Architecture and will be primarily responsible for managing the lifecycle and effectiveness of key security tools and processes. You will work closely with the Architecture and Risk Management teams to ensure that security controls are in place and appropriately managing risk throughout the Information Technology, Operational Technology, and Cloud environments.

Essential responsibilities will include but not be limited to:

• Design, deploy, and integrate network security tools and processes.
• Design, deploy, integrate Privilege Access Management (PAM) services for Linux and Windows environments.
• Experience in developing, testing, and deploying ZeroTrust security strategies focused on identity, device, and network contexts.
• Cloud (Azure / AWS) security engineering.
• Host based Antivirus [AV]/[EDR] Endpoint Detection and Response engineering.
• Splunk integration and agent engineering.
• Active Directory security hardening
• Active Directory Public Key Infrastructure [PKI] and Public Certificate Authority [CA] PKI engineering. Data protection tools and processes – Data Loss Prevention [DLP], Rights Management Services [RMS], Cloud Access Security Broker [CASB].

Job Complexity

• Manage multiple, concurrent project and task assignments, placing proper priorities on tasks and attention to detail to follow through all assignments to completion.
• Create and manage the lifecycle of documentation to support the architecture and operations of security systems.
• Continuously improve operational playbooks and knowledge transfer material to enable operational support teams to handle increasingly complex tasks to enable Engineering time is focused on the most valuable work Serve as an incident escalation point.
• Provide thought leadership and communications expertise in the development of policies, standards, procedures, and other communication for the department Provide thought leadership on key performance indicators for measuring success objectively Integrate existing and new tools and supporting resources into our security intelligence platform, with the goal of deriving actionable data.
• Keep current with the latest news and events surrounding cyber threats and security.
• Evaluate new technologies and processes that enhance security capabilities.
• Strong security policy knowledge and experience.

Skills:

• Bachelor’s degree in a computer science or information technology discipline.
• 8+ years of relevant work experience, including: Three or more years of experience as an Information Security Engineer with experience within at least two of the following disciplines: networking, system hardening, identity and access management, or privileged access management.
• Five or more years of Information Systems networking and/or information security analyst experience.
• CISSP certification is a plus.
• Cloud security experience is a plus.
• Deep understanding of Linux identity engineering and administration.
• Experience with Manufacturing environments is a plus.
• Strong knowledge of L4-L7 protocols such as SSL, HTTP, DNS, SMTP, and IPsec.
• Deep understanding of TCP/IP, computer networking, routing, and switching, and encryption technologies and standards.
• Conceptual understanding of the Cyber Kill Chain and MITRE ATT&CK framework.
• Strong capacity to understand vectors and the risks associated with them.
• Experience with deploying and managing distributed architecture layer 7 firewalls.
• Experience with IDS/IPS, penetration and vulnerability testing.
• Knowledge of identity and access management principles (SSO, MFA, ModernAuth, PAM).