Position :: Senior Cyber Security Engineer
Location :: Walnut Creek, CA or Phoenix, AZ (Hybrid Role)
Duration :: 6+ Months
Interview :: Phone and Video
Job Description:
Job Summary
The Senior Cyber Security Engineer role is responsible for designing, implementing, and enhancing appropriate cyber security controls to protect the large, complex IT environment. This is a highly visible, hands-on position responsible for identifying and mitigating security risks. The Senior Cyber Security Engineer is a resident security expert and drives efforts focused on both cyber security and product security. Reporting to the Director, Cyber Security and Network Engineering, this role plans and deploys technical cyber security solutions to protect Member data and prevent disruption of critical systems, applying risk assessment techniques to select control strength and assurance suited to the environment being protected. This role is also responsible for developing and maintaining technical documentation, creating and reviewing SOPs for the deployment and maintenance of security tools and solutions, and identifying and recommending remediations for gaps in existing security tool coverage across the enterprise.
Duties/Day to Day Overview :
- Oversee all aspects of enterprise-level cyber security, including designing, implementing, and documenting appropriate security measures to protect data and systems - 20%
- Manage projects, initiatives, and changes, including planning, scheduling, implementation, and reporting of status and risks - 15%
- Assess impact of proposed new systems or integrations on security posture of the environment as a whole, and communicate risks and mitigation options to key stakeholders - 10%
- Audit controls such as firewall rules, cloud and SaaS security configurations, and API controls, and recommend improvements - 10%
- Monitor in-house developed software for vulnerabilities and oversee remediation - 10%
- Maintain and recommend changes to cybersecurity architecture and toolbase - 10%
- Conduct periodic testing of security controls to evaluate effectiveness and recommend improvements, and establish and collect risk-based metrics - 10%
- Develop security requirements and assessment program for business use of technologies including Artificial Intelligence (AI) - 5%
- Assist with development of roadmaps for cybersecurity initiatives - 5%
- Other duties as assigned by the Director, Cyber Security and Network Engineering - 5%
Knowledge and Skills
● Ability to lead/develop a program
● Balance the risks and usefulness of IT initiatives and advise business partners appropriately
● Understand the role of cybersecurity in the context of the Club's mission, business cycles, critical systems, and projects
● Application of core security concepts - 5 years minimum in two or more of the following specialties:
○ Security and risk management
○ Asset security
○ Security architecture and engineering
○ Communication and network security
○ Identity and access management
○ Security assessment and testing
○ Security operations
○ Software development security
● Project Management - 2 years
● Strong oral and written communication skills
● Build relationships across organization
● Act with a sense of urgency to research questions or issues brought by the team
Qualifications:
● Bachelor’s Degree or equivalent work experience required
● 10+ years’ experience in information security field
Licenses and Certifications:
● Information or Cyber Security certification - Required
● Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) - preferred
● Information Systems Security Engineering Professional (CISSP-ISSEP) or Certified Secure Software Lifecycle Professional (CSSLP) desirable
Additional Notes from Qualification:
- Must be onsite 3 days a week – Walnut Creek is ideal, but can consider Phoenix, AZ and Helena, MT
- Any previous experience with Salesforce is very nice to have. They have dedicated SFDC teams the partner with, but experience here is very helpful
- puts a lot of value into certifications – loves to see CCSP
- Need to have experience with a Diagraming Utility – Visio or anything similar is fine.
- The team is moving to Agile, must be familiar with Agile Methodologies
- Need documentation skills, this person will be writing project-based requirements.
Never miss an opportunity! Create an alert based on the job you applied for.
