- Must work on-site NYC
- Must have leadership skills to work independently
- Must have excellent verbal and communication skills
- Must be vetted by you before presenting them to us
- We are looking for engineers that have multiple skills like "swiss-army-knife” rather than specialized roles. I am also attaching one such resume of a candidate with multiple skills as an example
- Should be willing to stay Long Term
- With skills that are mix and match between these job descriptions will be interviewed
Job Title: Cyber Security Engineer
Description:
The job opening is for an experienced, hands-on senior Security Engineer/architect that will design, configure, implement, and support security controls in a growing enterprise environment. The security engineer responsibilities will include leading security projects involving LAN, WAN, IoT, OT, Office 365, Datacenter, Wireless, Cloud, endpoints etc.
Responsibilities:
- Architect security controls
- Perform security risk assessments of applications, cloud services, and networks
- Configure IDS/IPS security policies
- Configure and support security policies in DNS & WAF
- Configure and support security policies in Reverse and forward Web Proxy server, CASB
- Examine current firewall policies and ensure completeness and accuracy
- Troubleshoot level 3 security related issues.
- Architect and configure cloud security controls and VMWare environment
- Utilize SEIM, Armis, Extrahop and Secureworks for threat intelligence and incidence response
- Use network monitoring tools to triage incidents and perform asset management tasks Maintain risk register
- Manage Disaster Recovery, Incident Management, and Business Continuity activities
- Lead the resolution of security incidents
- Conduct periodic audits on user access control verifications
- Address vulnerabilities
- Work with vendors to integrate security platforms into the infrastructure
- Implement DLP controls
Requirements:
- 5 years or more of Security Engineering experience in a complex enterprise environment
- Strong project management experience
- Must be able to lead projects
- Bachelor's degree in computer science, information technology or related field.
- Should be able to utilize security frameworks like NIST and MITRE.
- Proficient in the use of security management tools to facilitate troubleshooting, e.g., Wireshark, NetBrain, Extrahop, NetWitness, CoreInsight etc.
- Experience in some of these application security related tools: Burp Suite, Fortify, Zimperium, Veracode, HCL AppScan tools
- Strong knowledge of Proxy Web Gateway
- Experience in Netwrix data classification and auditing tool
- Experience with Trellix EPO and Crowdstrike
- Experience with Skyhigh Proxy Gateway and CASB
- Experience with Menlo Security web and email isolation tool
- Configure security policies in DNS and WAF
- Strong understanding of network, application, and cloud security
- Strong Identity and Access Management background
- Experience with configuring DNS. Familiarity with Infoblox to maintain public facing DNS services as well as IPAM
- Understanding of the various VPN technologies
- Knowledge of security of wireless environment including controllers and Client.
- Knowledge of resilient designs to ensure high availability
- Knowledge of IPS/IDS design as standalone hardware or as a feature within firewalls
- Understanding of IoT and OT security
- Ability to create reports using KRI and KPI
- Experience with Next Generation Firewalls including Palo alto, Fortinet, etc.
- Background in WAFs
- Work with vendors, carriers, and other technical groups to implement new security controls and troubleshoot existing controls
- Any automation experience is a plus