Icon hamburger
US
What job do you want?
Apply to this job.
Think you're the perfect candidate?
Apply Now
Thumsup

You’re being taken to an external site to apply.

Enter your email below to receive job recommendations for similar positions.
Default4

Information Security Engineer II

ePlus Technology Inc. Orange Contractor
Apply Now
Job Description Summary

The Information Security Engineer II is an experienced member of the Information Security Department performing actions designed to enhance and maintain the organization's information security posture while being instrumental in the achievement of the Information Security Strategy.

The responsibilities of the Information Security Engineer II include:
  • Design, implement, and support appropriate information security controls, including but not limited to: NextGen Firewalls and UTM, IDS and IPS, Web Application Firewalls / Proxies, Web Applications, Cloud and Software-As-A-Service Applications and Infrastructure, Vendor supplied Applications, and Identity Management and Governance systems.
  • Coordinate vulnerability assessments and penetration testing Secure directory, computer system and network infrastructure configurations Contribute to incident response and forensic investigations
  • Planning, tracking and implementation for security projects and audit activity Provides daily and routine security operations activities including partnering with 3rd party security service providers Monitors and actions Data Loss Prevention (DLP) system issues Responds to security incidents that are complex and highly sensitive in nature Stays current with emerging threats and industry trends relating to information security Contributes to risk based analysis of IT infrastructure, IT systems, and external services Participates in the Continuous Service Improvement Program and documents Information Security Processes.
  • Provides guidance to junior team members on standards, best practices and operational activities May act in the technical lead role for small and medium Information and Cybersecurity Initiatives.

Job Description
  • 5 years of relevant Information Security Engineering experience. An understanding and ability to apply information and cyber security theory and best practices.
  • Experience working with 3rd party Security providers and vendors, including vendor negotiations.
  • Expertise in meeting with IT staff and business operations to discuss and resolve business concerns related to security.
  • Learned knowledge and demonstrable experience in the following information security technologies and methods, including: Security Analytics, Host and network discovery, Vulnerability scanning, Intrusion detection and prevention, Security event log analysis, Packet capture analysis, Web based application security, Business continuity and disaster recovery, Security Audits, System Security Assessment, Data Privacy, Standards and Process development, Collects program metrics from the security reporting systems Provides basic data collection to support Legal and Human Resources investigations.
  • Applicable Standards, Regulations and Frameworks: HIPAA, HITECH, PCI DSS 3.x, NIST, PII (Sensitive and Restricted data management), ITIL.
  • Preferred: Working experience with the following Standards, Regulations, and Frameworks: Cloud Security Controls (CSA), COBIT5, OWASP, Sans CSC-20, GDPR.
  • Education: Bachelor Degree or equivalent related work experience. Preferred: Bachelor or Master Degree in a major requiring logical analysis.
  • Training: Fluency in Windows and Linux / Unix OS; expertise with Palo Alto Networks and / or Cisco IOS. Experienced in common scripting such as PHP, BASH, PowerShell, and Python. Security+, SSCP or other related Cyber security certification. Preferred: Certified Information System Security Professional (CISSP).
  • Special Skills: Expertise in meeting with IT staff and business operations to discuss and resolve business concerns related to security. Preferred: Provide professional, team oriented and customer focused solutions to security issues.
 

Skills required

Network Security
Intrusion Detection And Prevention
Encryption
Public Key Infrastructure
Wireshark
Microsoft Antivirus
Apply to this job.
Think you're the perfect candidate?
Apply Now

Help us improve CareerBuilder by providing feedback about this job: Report this job

Report this Job

Once a job has been reported, we will investigate it further. If you require a response, submit your question or concern to our Trust and Site Security Team

Job ID: 19-00152

CAREERBUILDER TIP

For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.