Apply for this job.

Please fill out the form below to apply for this job.

 We only accept .doc, .docx, .pdf, and .odt files
 

Sr. Security Engineer .

  Charlotte, NC

Negotiable
408
Direct Hire
Apply Now

Prosyntix is recruiting for a Fulltime role with a financial Company located in Charlotte, NC.   This role will be reporting into the Head of Cyber Security Operations.  The Sr IT Security Engineer will be part of the Security Operations team that is accountable for ensuring security systems and applications are delivered, maintained and hardened to maximize cyber security investments. This role will be responsible for overseeing endpoint, network, cloud and messaging technologies designed to identify, prevent, protect, comply, monitor and respond to everyday cyber-security threats facing corporate infrastructure, networks and connected cloud ecosystems.

This role will also play a key part in supporting incident response team activities by collaborating cyber related events. The Sr IT Security Engineer will be a key member of the change advisory and architectural review boards and will also partner closely with Cyber Security, Data Protection, Enterprise Architecture and MSSP personnel.

 

This role has both the option to sit 100% remote or work in the office.  Only requirement is the employee will work EST hours.    

 

Key Responsibilities:

•             Provide technical guidance with the deployment and maintenance of security systems and controls to support systems and applications

•             Responsible for the installation, maintenance and support of security control technologies including but not limited; unified threat managed firewalls, intrusion prevention & detection systems, enterprise endpoint detection and response, anti-virus and patching solutions, data leakage prevention, two-factor authentication, threat detection, vulnerability scanners, web-filtering, VPNs, cloud protections and messaging protection technologies

•             Collaborate with IT staff including Operations, Engineering and Enterprise Architecture and business units to assess risk and address security issues

•             Provide guidance surrounding cyber related issues while recommending solutions that mitigate and eliminate risk

•             Define security requirements and review systems to determine if they have been designed to comply with established security standards; develop new standards as necessary

•             Participate in forensics and post-mortem investigations of Information Security incidents while collaborating on investigative reporting

•             Ensure that controls are in place and managed properly to meet legal and regulatory compliance on all network and system infrastructures

•             Assist in the enforcement of security policies from planning, technology safeguards and remediation for data, software applications, systems including cloud connected infrastructure and systems

•             Review and recommends the installation, modification or replacement of hardware or software components and any configuration changes that affect or baseline security risk posture

•             Build and maintain relationships with teams and third parties on security development and support issues

•             Be a member of the Security Incident Response Team, providing a high level of support of expedited problem resolution

•             Serve as key engineering support for in-house security systems and technology and MSSP supported technology and other reporting channels

•             Drive consistent operating system (server, endpoint, virtual) hardening, access configuration, upgrades, patching, logging and vulnerability resilience

•             Perform security technology control configuration reviews, recommend and apply (directly or through oversight)

•             Participate in review and approval of standards, conventions, solution architectures and other artifacts created by the Enterprise Architecture organization

•             Contribute to the business and technology drivers behind development of the Target State Architecture for the Security domain by working closely with Enterprise Architecture

 

Essential Business Experience and Technical Skills:

•             Bachelor's degree or equivalent experience.

•             5+ years’ experience in cybersecurity

•             Highly technical and analytical with a proven diverse IT and security background

•             Experience with security validation teaming to identify and remediate issues rapidly

•             Experience in cloud computing technologies, including software, infrastructure and platform-as-a-service, as well as public, private, and hybrid environments

•             Experience in security configuration of Office 365

•             Experience with Microsoft Cloud App Security solution

•             Experience and successful in delivering vulnerability and penetration testing requirements

•             Experience managing SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, Cloud Access Security Brokers (CASB), data loss prevention (DLP) and other network and system monitoring tools

•             Experience with Microsoft Exchange and anti-spam technologies and protocols

•             Previous Network Engineering or Systems Engineering background preferred

•             System administration experience in a Windows, Linux and Unix environment

•             Experience developing technical documents and procedures, topology maps and with various software applications

•             Ability to explain complex ideas and concepts to both a technical and nontechnical audience, both verbally and written

•             Solid understanding of security operations in interconnected cloud environments such as Azure, AWS, VMware and other SaaS environments

•             Ability to communicate and navigate across cross-functional teams and providers

•             Good understanding of cyber risk attack approaches (e.g. lateral movement, indicators of compromise, privilege escalation)

•             Proven experience in supporting security operations and managing solutions for multiple business units and locations

•             Ability to effectively execute concurrent activities and maintain focus on key details during times of crisis and heightened pressure

 

Preferred Information Security certifications

•             CySA+

•             Security+

•             CCNA Security

•             Microsoft 365 Certified: Security Administrator Associate

•             Microsoft Certified: Azure Security Engineer Associate

•             Systems Security Certified Practitioner (SCCP)

•             Certified Information Systems Security Professional (CISSP)

•             Certified Cloud Security Professional (CCSP)

•             Certified Information Security Manager (CISM)

Let’s Get in Contact to Discuss Your Project

Contact Us