Hybrid Lead Cybersecurity Engineer

Must be able to be on-site 3 days per week at Exchange Place in Jersey City.

POSITION SUMMARY

The Lead Cybersecurity Engineer is responsible for designing, implementing, and maintaining robust security measures across an organization's IT infrastructure, including networks, servers, storage, endpoints, and cloud environments. This role is responsible for protecting against cyber threats by identifying vulnerabilities, implementing preventive controls, and monitoring for suspicious activity; partnering with other IT teams to ensure security standards are adhered to throughout the infrastructure.

POSITION REQUIREMENTS INCLUDING

• Implement and manage comprehensive security architecture for infrastructure components, including firewalls, intrusion detection/prevention systems, virtual server environment and cloud resources, ensuring adherence to documented security and compliance policies.
• Recommend, implement, and manage Identity Access Management (IAM) and Privileged Access Management (PAM) solutions.
• Receive and mitigate escalations from MDR providers, including suspicious activity, security violations, attempts to gain unauthorized access, virus infections, and provide status updates to management.
• Perform vulnerability scans using vendor tools or services
• Manage enterprise anti-virus and EDR systems.
• Implement and manage a functioning vulnerability and patch management system for all systems in the enterprise.
• Identify and recommend process improvements and third-party technologies offering state-of-the-art applications, services, and infrastructure suitable for the Companies' security needs and financial parameters.
• Partnering with application teams to ensure compliance with enterprise security policies and data protection initiatives.
• Participate in projects as a technical resource related to infrastructure security.
• Utilize best practices for infrastructure security, architecture, configuration, disaster recovery, administration and automation of the enterprise environment including on-prem and cloud technologies.
• Create appropriate diagrams and documentation of enterprise infrastructure security technology and processes.
• Document and managing work through a ticketing system and a change control process.

REQUIRED KNOWLEDGE, SKILLS AND ABILITIES

• Deep technical knowledge and extensive experience with complex technology environments, including applications, middleware, on-prem and cloud storage, networks, information security and operations.
• Deep technical knowledge of Microsoft Azure and ability to build and maintain a secure cloud infrastructure
• Proficiency in the use of infrastructure monitoring tools such as DataDog, ThousandEyes, Netwrix, and a firm understanding of Zero Trust methodologies and technologies (e.g., Zscaler, Zero Trust Network Access).
• Working knowledge of Microsoft Exchange, Exchange Online, and mail security platforms (e.g. Defender, ProofPoint).
• Intermediate knowledge of Microsoft Active Directory domain design and management.
• Ability to create self-authored scripts in PowerShell.
• Strong knowledge of Secure Sockets Layer (SSL) certificate lifecycle management.
• Sound verbal and written communication skills to address associates at all levels of the organization, including the executive level.
• Strong organizational skills, with an ability to manage multiple timelines and complete tasks quickly within the constraints of project timelines and budgets.
• An interpersonal growth mindset and willingness to learn new skills, technologies, and frameworks.
• Ability to work well with others on high-performance teams.
• Demonstrates exceptional problem-solving skills by analyzing complex issues, devising innovative solutions and guiding the team.
• Knowledge of Intrusion Detection Systems (IDS) and SIEM technologies; Splunk, endpoint detection, Firewalls and Sourcefire and similar tools preferred.

EDUCATION, EXPERIENCE, CERTIFICATIONS

The Security Engineer position requires:

• A Bachelor's degree from an accredited college/university in Computer Science or Information Systems or equivalent.
• 5+ years of experience in a large Microsoft Windows environment.
• 5+ years of experience as a Security Engineer, Security Operations Center Engineer or similar role.
• Strong understanding of Active Directory, M365 including Teams, Intune, SharePoint, virtualization, Microsoft Server, Microsoft desktop operating system (OS), Domain Name System (DNS), Secure Sockets Layer (SSL).
• Vendor certifications in at least two of the following technologies: o Certified Cisco Security Associate (CCNA)
  • Certified Cyber Security Systems Professional (CISSP)
  • CompTIA Security+
  • Microsoft Associate or Intermediate certificates in Azure, Network or Windows
• Property/Casualty insurance expertise is a plus.

PHYSICAL DEMANDS

• Physical demands are considered to be that of a climate-controlled office environment, with minimal physical exertion.
• Position is hybrid and requires the ability and the willingness to work in the Companies' office at least three (3) days per week.
• Position requires prolonged sitting, extensive utilization of computers and interactions with others in person and via phone.
• Position requires the ability and the willingness to travel as required to meet business needs.

BENEFITS

• Company offers competitive compensation and benefits, including medical, dental, vision, 401(k), flexible spending, short-term and long-term disability insurance, life insurance, long-term care, paid parental leave, vacation and other paid time off.