IT Security Engineer: cloud security (IAAS / CASB) + DLP, MFA / SSO, MDM, SIEM, end point mgmt, vulnerability, monitoring/logs

  • KORE1,
  • Los Angeles, CA
  • 1 week ago
security engineer, IT security, aws, iaas, cloud security, siem, security monitoring, dlp, data loss prevention, azure, gcp, infrastructure, windows, mac, linux, waf, casb, firewalls, palo alto, infosec, vulnerability management, web application scanning, web application firewalls, netskope, splunk, qradar, proofpoint, tenable, crowdstrike, wireshark, firepower, threat detection, mdm, okta, dou, mfa, sso, pentesting
Full Time
Depends on Experience
Work from home available Travel not required

Job Description

KORE1, a nationwide provider of staffing and recruiting solutions, has an immediate opening for an IT Security Engineer: securing cloud (IaaS / CASB) w/ tools for DLP, MFA / SSO, MDM, SIEM, end point mgmt, vulnerability, monitoring/logs, etc. + securing cloud (IaaS / CASB)

Our client is looking for a Cyber Security Engineer to join our dynamic Technology team. 

In this role, you will be responsible for the overall security of the organization.  This encompasses end-user awareness training, utilizing user behavioral and threat-based analytics to identify issues, reviewing on-going SOX, PCI, and other regulatory compliance reqs (to implement those policies in our tools), assisting in developing policies, playbooks, etc. all while working with various business units for compliance.

What You'll Do:

  • Work closely with IT management to define security practices for the organization and present recommendations to both technical and non-technical team members
  • Work closely with the Director of IT to help define a security strategy and roadmap
  • Perform gap and risk assessments of our current organization and make recommendations on how to remediate
  • Help consolidate redundant security tools (for example: MFA / SSO is currently being done w/ both Okta & Dou, Dou will be retired)
  • Contribute to monitoring (SIEM), MDM, end point management, vulnerability detection, etc. 
  • Help fix / improve patch management (currently our servers aren't all automatically being patched)
  • Understand and explain the underlying techniques that hackers use to exploit and penetrate systems
  • Maintain a strong technical background to help remedy any vulnerabilities in the organization
  • Ongoing SOX and PCI compliance and familiarization of the processes
  • Work closely with security vendors, regularly review logs, UBA, and other security tools and respond accordingly
  • Map security findings to business impact and communicate security messaging effectively across all business units and to the leadership team
  • Work closely with Software Engineering and BI teams to ensure our AWS infrastructure is secure

You'll love this job if you are:

  • A strong communicator and collaborator. From elevator chats to boardroom meetings, you always know the best way to communicate with others to forge effective connections.
  • Dedicated and fast-moving. You're known to operate with passion, urgency, focus, and discipline
  • A talented juggler. You successfully manage competing priorities, and you make it look easy
  • Results oriented and a self-starter. You love to exceed set goals and take on new projects
  • The definition of integrity. You represent and inspire the highest ethical standards.
  • Adaptable and ambitious. You will enthusiastically take on other assignments as needed to support your team! 

What You'll Need:

  • Bachelor's degree is a plus
  • Relevant certifications are a plus.
  • 2-3+ years of experience in a hands-on IT security role
    • Experience hardening systems, specifically cloud-heavy environments ideally w/ AWS
    • Familiarity with cloud computing technology (AWS, Azure, and GCP) and various means to secure them.
    • Ideally working in an environment that is 50% or more cloud-based leveraging cloud for IaaS (we are almost 100% in the cloud w/ AWS)
    • Ideally in the context of securing workloads / servers in the cloud
    • Familiarity with cloud computing technology (AWS, Azure, and GCP) and various means to secure them.
    • Experience working with as many of the following as possible: 
      • In this context, configuration / implementation / or owning support w/ the below is desirable 
      • Active Directory / Azure Active Directory
      • SIEM tools (any tool works but Splunk is a plus)
      • DLP / data loss prevention tools (any tool)
      • CASB / cloud access security broker tools (any tool works but Netskope is a plus) 
      • End point management tools (any tool works, but Crowdstrike is a plus)
      • MFA / SSO (Okta, Dou, or comparable)
      • MDM (any tool works, but VMware Workspace One is a plus)
      • Vulnerability detection / identification tools (any tool works, but Tenable is a plus)
      • Security monitoring / logging tools (any tool)
      • Firewalls
      • Web application firewalls
      • Web application scanning tools
      • IaaS security tools are a plus
      • Cloud native security tools are a plus 
      • Knowledge of different attack vectors and methods helpful
      • Experience analyzing an exploited system and remediating accordingly
      • Experience monitoring threat actor tactics, techniques and procedures (TTP's) helpful. 
  • Tools you might have worked with:
    • QRadar or comparable
    • Proofpoint or comparable
    • Tenable or comparable 
    • CrowdStrike or comparable 
    • NetSkope or comparable 
    • Splunk or comparable 
    • Wireshark or comparable 
    • Firepower or comparable 
  • Former infrastructure administration / engineering with:
    • Solid experience w/ OS (Max, Windows, Linux)
    • Network devices like firewalls a big plus (especially Palo Alto or next-gen firewalls)
    • Virtualization (VMware and/or Hyper-V welcome)
    • WAF - web application firewalls a big plus
    • Cloud technologies (AWS preferred, but open to Azure or GCP)
    • We have a dedicated IT team you will work w/ (in the context of hardening our environment) 
  • Good business sense to logically think through problems and deliver a balanced approach to security
  • Excellent written & verbal communication skills. 
  • Able to work well independently & as part of a team
  • Willingness to grow your skill / career with our organization!
Specializing in professional and technical recruiting, KORE1 is committed to supporting top IT, Engineering, Creative, Scientific, Accounting and Finance professionals in their career paths. We build deep relationships with leading companies, connecting them to exceptional talent every day. With extensive industry expertise and unmatched opportunities, our goal is to provide a unique experience for our contractors and consultants as they prepare for their next role. We are passionate about matching the right people with the right companies.
Kore1 provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Kore1 complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Kore1 expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Kore1's employees to perform their job duties may result in discipline up to and including discharge.
Dice Id : 10121019
Position Id : 7239742
Originally Posted : 7 months ago
Have a Job? Post it

Similar Positions

Cloud Security Engineer / Architect (remote)
  • Randstad Technologies
  • Los Angeles, CA, USA
Senior SOC Analyst/Engineer, Security Operations Center (SOC)
  • Atrilogy Solutions Group, Inc.
  • Los Angeles, CA, USA
Azure Infrastructure Cloud Security Manager
  • Deloitte
  • Los Angeles, CA, USA
Cloud Security Business Solution Analyst
  • Deloitte
  • San Diego, CA, USA
Senior Security Engineer
  • Xoriant Corporation
  • Newark, CA, USA