AE Business Solutions islooking for a Senior Cyber Security Engineer for a 6-month Contract-to-hire role with an organizationin the Janesville/Beloit area.
This Senior Cyber Security Engineer will be responsible for assuring Information Security and identifying risks related to the use, processing, storage and transmission of information and the systems and processes used for those purposes. In addition, this person will assist in identifying, analyzing, influencing the management of information risks across the organization, and will be involved in the architecting of solutions.
The role also includes consulting on various on-going projects within the organization, reviewing environmental change requests for potential impacts to the organization's security posture, vetting proposed systems and solutions from a security perspective and advising on how to mitigate any risks involved.
•Assist in the creation and maintenance of enterprise security policies, controls, and standards for technologies defined within the organization's taxonomy
•Assist the Manager of Security/Compliance with the annual Security Awareness Training program and ensure compliance to program
•Conduct a thorough review of the existing logging / monitoring deployment of security tools to confirm log collection is occurring from all the critical systems that should be reporting into the log consolidation solution, identifying gaps then providing analysis & recommendations for tuning security systems' rules, alerting and reporting.
•Oversee, manage and provide reporting from the Next Generation Firewalls (NGF)s, Anti-Virus, Malware, Security Information and Event Management (SIEM), Intrusion Detection / Prevention (IDS/IPS), Domain Name Services (DNS), Vulnerability scanners, and other security solutions that comprise the Security Architecture of the organization.
•Monitor and measure adherence & compliance to the patch management process for operating systems, software applications, firmware, etc., and produce monthly metrics of patching results.
•Work closely with Project Managers and System Design architects to provide security requirements and confirm their integration within the appropriate phases of the Systems Development Life Cycle (SDLC).
•Partner with infrastructure team on vulnerability assessment and remediation.
•Work closely with Manager of Security/Compliance for troubleshooting security related problems, identifying and implementing security strategy and solutions.
•Manage the security incident process; monitor tickets, reports, and events produced from our SIEM with respect to server logs, firewall logs, and network traffic for unusual or suspicious activity, and make recommendations based on those findings
•Research attempts to compromise security protocol and recommend solutions.
•Recommend and validate information security controls and guidelines to ensure compliance with the Information Security program.
•Support the annual PCI recertification efforts.
•Technical background, with understanding of key concepts within Information Security, including identity access & management, user authentication and authorization as well as compliance and risk.
•A demonstrable ability to weigh business needs against security concerns and articulate issues to the user community.
•Experience with Palo Alto Networks Next-Gen Firewall with Panorama centralized management is preferred.
•Experience with Microsoft Azure application, network, and security architecture preferred.
•A proven ability to identify and analyze potential problems and enhancement opportunities.
•Demonstrated understanding of policies and IS requirements.
•Analytical and problem solving abilities with keen attention to details.
•Experience or familiarity with similar security-related tools such as Netwrix, PAN, WSUS, Alteris, LAPS, Okta, ServiceNow, IP360/Tripwire, LogRhythm (SIEM), Privileged Access Management tools.
•Effective oral and written communication skills.
Education and Experience:
•Bachelor's degree from an accredited U.S. college or university, or equivalent non-U.S. degree
•6 to 12+ years of experience in the following: security incident response, security applications/tools administration, or operating system support, cyber security engineering, and compliance and risk (NIST). Consideration will be given to an equivalent combination of education and experience
•Experience with technologies generating security alerts
•Experience with PAN next-gen firewall and Microsoft Azure application, network and security architecture
•Experience in a diverse systems environment with system integration, system administration, and computer security experience
•Basic IT forensics skills are preferred
•IT or IT security certifications (e.g. CISSP, CISA, CRISC, or obtained with 2 years of hire) highly preferred
If this sounds like the next step in your career, please apply to this posting! You can also email a resume to Alex at firstname.lastname@example.org.
**We pay $1,000 for the referral of an eligible candidate who works for AE Business Solutions for 90 days!**
AE Business Solutions does not sponsor applicants for employment visas.
AE Business Solutions is an Equal Opportunity Employer. EOE/AA