Cyber security Engineer
A client of ours, an investment firm located in NYC, is looking to hire a Cyber Security Engineer.
The engineer will be responsible for evaluating, implementing and maintaining the information security systems of the firm. Working closely with the CISO and IT Risk teams, she/he will be responsible for key security projects for AppSec and data protection needs. This may include: assessing risks, implementing remediation plans, improvement strategies for identified gaps, developing, coordinating and leading incident response, monitoring and compliance, and preventing / detecting suspicious activity.
The ideal candidate has a background in information security specifically, cloud security solutions, software application security best practices and custom solutions, and is proactive to identify risks in an ever changing threat environment.
The ideal candidate is someone who can get their hands dirty, providing hands-on solutions such as hardening systems.
Provide technical guidance and hands-on engineering to ensure security tools are implemented to support security objectives
Identify management & monitoring gaps and recommend options to remediate
Maintain a current understanding the IT threat landscape for the industry
Stay on top of Cybersecurity trends and advances, helping to update the information security strategy to leverage new technology and threat information
Serve as a technical resource for all cyber security solutions
Identify risks and actionable plans to protect the business
Implement and maintain cloud security solutions and configurations
Work with and manage thrid party security vendors
Work with development and IT Risk teams to ensure a highly secure platform
Education / Experience:
Minimum 4 years Professional work experience specific to Information Security in a small to medium sized highly regulated environment
Experience with: application data security, computer forensics, incident response, threat intelligence, cloud security configurations, risk assessment; third party vendor management
Experience securing cloud environments with an understanding of cloud security infrastructure and cloud security principles is a must
Experience with IT security policies and regulations such as ISO 27001, NIST 800-30A, SOX, SOC2 and privacy regulations.
Experience supporting security solutions on-premise and in the cloud
Strong analytical, communication and leadership skills
Certifications such as CEH, GSEC (GIAC), CISM (ISACA), Security+ (CompTIA), CCSP, AWS Certified Security