Security Engineer

Software Guidance & Assistance, Inc., (SGA), is searching for a Security Engineerfor a direct placement assignment with one of our premier Boutique Investment Banking clients in New York, NY .
This is a full-time position: client is unable to sponsor now or in the future.
Unable to work with additional layers of employment.
Responsibilities :

• We are seeking a talented and motivated Security Engineer to join the firm's security team.
• Will play a key role in ensuring the security and integrity of our systems, networks, and data.
• Responsible for monitoring and analyzing information security vulnerability and risk profile using data and alerts generated from various systems; evaluating and remediating impact to the Firm resulting from the unauthorized access, use, modification, destruction, disclosure of Firm and / or client data, documents, work products, or formal records or information technology environment; and implementing and maintaining information security systems in the Firm's global information technology environment.
• Assists in evaluating, selecting, and implementing new security technologies and establishing processes and best practices.
• Will have a strong background in security architecture, vulnerability assessment, and incident response.
• Performing continuous monitoring of the Firm's information security systems, technologies, processes, and procedures, analyzing the findings, and communicating exceptions, concerns and remedial steps to the Director of Security Engineering, and/or Chief Information Security Officer as necessary;
• Cloud security design, implementation, and security control management with regular security assessments, monitoring and audits of cloud infrastructure.
• Promptly reporting any and all exceptions to policies, procedures, and operational standards to the Director of Security Engineering, and/or Chief Information Security Officer as necessary.
• Executing the Firm's information security threat management process, ensuring all aspects of an event are documented and remediated, and communicated to the Director of Security Engineering, and/or Chief Information Security Officer as necessary;
• Developing and sustaining an operationally efficient Vulnerability Management Process.
• Providing customized reports with actionable information to assist with the resolution and completion of activities related to asset vulnerabilities, articulate the current state of vulnerabilities within the enterprise or provide detailed trending of current and historical data designed to highlight changes in security posture and work accomplished.
• Assist in monitoring and analyzing security relevant logs, events, and alerts including, but not limited to, logs from systems, applications, SIEM, AV, Firewalls, file systems, and IPS; document relevant incidents and suggest/co-ordinate appropriate remedial actions.
• Reviewing all operational, hardware, and software changes that may impact the firm's standard information security posture.
• Participating in projects, programs, and initiative to ensure implementation of and adherence to the Firm's information security technology policies, procedures, processes, and technologies.
• Coordinating upgrades, administration and troubleshooting support for all information security products in the Firm's information processing environment, submit and monitor product support requests, coordinate troubleshooting efforts, and drive the Firm's standard issue resolution process to conclusion.
• Providing consultative direction and advice regarding to information security architectural standards, technologies, policies, and procedures for all Firm offices and facilities.
• Exhibiting the ability to think and act strategically as well as tactically, utilizing and developing interpersonal and written and verbal communication skills to effectively support the Firm's global information security functions.
• Must work well under pressure and be able to coordinate project work with others inside and outside the department. Able to respond to and remediate information security events that arise unpredictably and have a good overall understanding of the required work to maintain a highly secure environment.

Required Skills:

• At least 5 to 7 years' experience in one or more security domain, proven track record of implementing and operating information security systems and working in projects related to the core domains applicable to information security architecture.
• 8-10 years of progressive relevant hands-on IT experience.
• Good working knowledge of the industry standards, policies, processes, procedures, guidelines and currently available technologies applicable to maintaining and supporting a mature information security program.
• Substantial knowledge in python and PowerShell scripting for security system integration and automation.
• Sound analytical and operational judgment, the use of tact in daily and stressful situations, and sound analytical rigor applied to supporting and remediating events in the Firm's information security systems, processes, and procedures.
• Substantial knowledge of and experience in two or more of the core security domains including, but not limited to, the following: Endpoint protection, Incident response, IAM, Security Operations, Application and Data security, Infrastructure, Virtualization, Mobile Security, and cloud monitoring.
• Substantial experience in designing and deploying information technology and solutions in one or more of the core domains:
  • Endpoint protection
  • Incident Response
  • Malware Analysis
  • Application and Data security
  • Infrastructure and Endpoint
  • Security Intelligence / SIEM
• Solid understanding and significant experience working with structured design methodologies.

Preferred Skills:

• Bachelor's degree in Engineering or Computer Science a plus.

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at https://sgainc.com/ .
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company EEO page to request an accommodation or assistance regarding our policy