The position is responsible for safeguarding organization's computer networks, systems, and bespoke applications. Using industry frameworks and standards plan and carry out security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks.
RESPONSIBILITIES
Strategy & Architecture
Information Security
- Provides guidance on the application and operation of elementary physical, procedural, and technical security controls.
- Explains the purpose of security controls and performs security risk and business impact analysis for medium complexity information systems.
- Identifies risks that arise from potential technical solution architectures. Designs alternate solutions or countermeasures and ensures they mitigate identified risks.
- Investigates suspected attacks and supports security incident management.
Delivery & Operations
Security Operations (SCAD)
- Maintains operational security processes and checks that all requests for support are dealt with according to agreed procedures.
- Provides advice on defining access rights and the application and operation of elementary physical, procedural, and technical security controls.
- Investigates security breaches in accordance with established procedures and recommends required actions. Provides support and checks that corrective actions are implemented.
Vulnerability Assessment (VUAS)
- Collates and analyses catalogues of information and technology assets for vulnerability assessment.
- Performs vulnerability assessments and business impact analysis for medium complexity information systems.
- Contributes to selection and deployment of vulnerability assessment tools and techniques.
Digital Forensics (DGFS)
- Designs and executes complex digital forensic investigations on devices.
- Specifies requirements for resources and tools to perform investigations.
- Processes and analyses evidence in line with policy, standards and guidelines and supports the production of forensics findings and reports.
QUALIFICATIONS & EXPERIENCE
Minimum Qualifications
- Direct experience with endpoint protection, intrusion detection, firewalls, and content filtering
- Experience in using and managing security information and event management systems (SIEM)
- Experience in vulnerability management programs utilizing SAST & DAST tools.
- Experience in cyber awareness platforms and programs
- Experience in Microsoft 365 Defender & Microsoft Defender for Cloud
- Experience in cloud security with preference to Azure
- Experience in performing risk assessments.
- Experience in participating in creating secure architecture for greenfield and bespoke application.
- Experience in DevSecOps practices
- Knowledge of disaster recovery, computer forensic tools, technologies, and methods
- Knowledge of ISMS and ISO 27001 certification
- Knowledge of NIST control framework
Preferred Qualifications
- Bachelor of Computing Science/IT
- Azure Security Engineer Associate
- Certified Cloud Security Professional
WHY SHOULD YOU WORK AT CITY?
For starters, City is a global leader in facilities management. Additionally, we offer competitive compensation, a generous benefits package that includes 28 days of PTO and a 401(k) match with immediate vesting, along with a tight-knit culture and leadership that truly cares.
If you're the kind of person who wants to own your day, your schedule, and the stores you support, then you're exactly the kind of person we're looking for! We don't just hire anyone at City; we're looking for loyal people with grit, a deep sense of personal responsibility and a thirst for constant learning and growth, with a willingness to always lend a helping hand.
When you join City, you're committing to making a difference. We make a commitment to you, too - helping you embark on a career with purpose!
IS GROWTH IMPORTANT TO YOU?
Great, us too! We're not only committed to growing as a company, but to creating an environment where our team members grow professionally and personally as well. Founded in 1985 in Glasgow, Scotland, we are the largest privately held facilities management company in the world. We expanded to the US in 2016 and are already covering over 1,000 retail, grocery, and convenience stores across 20 states with almost 700 team members.
City works to ensure our team members have opportunities for growth and advancement by offering 1,400+ e-learning classes, a Leadership Development Program, a Level-Up Program for technicians, and providing assistance gaining trade licenses - City cares passionately about the people we hire and ensures that growth is always on the horizon.
Wondering if your values align with ours? If you put customers first, care passionately about what you do and are committed to working on a team that respects one another, you will fit right in! So, if you're ready to get started, we're ready for you - apply today!