Job Description
Security Engineer II:
Security Incident Handling & Response:
Well versed in handling Security incidents and violations of standard security practices including malware, ransomware, phishing, Advanced Persistent Threats, (DDoS) attacks, etc. Experience analyzing data from security tools such as EDR, SIEM, Firewall/UTM logs, Vulnerability Assessment reports, Pen test reports, etc.
Firewall/IDS/IPS Skills:
Significant experience with the design installation and management of firewalls, including IDS/IPS integration and configuring UTM (unified threat management) features such as AV, Content filtering, IPS/IDS, etc.
SOC/SIEM Management: Significant experience in managing security information and event management (SIEM) tools and services. Ability to configure alerting within the SIEM and analyzing alerts to translate into real-time actions to mitigate or remediate threats. Incident Response Plan development experience preferred.
Audit & Compliance: Significant experience in supporting security audits to confirm adherence to good security practices and ensuring regulatory compliance. Building Corrective Action Plans (CAPs) for each gap or variance and following through with mitigation or remediation.
Advanced Malware Prevention:
Significant experience with the installation, and use of modern EDR platforms like S1 and Crowdstrike to prevent, detect, and identify Advanced Persistent Threats (APTs) that might circumvent traditional security solutions like anti-virus, firewalls, and IPS/IDS.
Digital Forensics:
Good background in forensic tools and investigative methods used to find data, anomalies, and malicious activity on the network, in files, or other areas of the business.
Cultural and Work Environment:
Must be highly motivated and self-driven individual who can take initiative and work independently. Ability to handle tasks across multiple clients in a thoughtful and efficient manner.
What will you be doing?
As a Senior Security Engineer at Enterprise Integration, you are part of a team that works cohesively to address enterprise clients’ needs. You will work with various clients implementing security controls, supporting UTM / Firewalls, IDS/IPS solutions, Endpoint Protection solutions, Data Loss Prevention, and Advanced Persistent Threat technology. You will help maintain operational effectiveness and efficiency of the clients security infrastructure.
We are a learning organization so you will be involved in conducting research on emerging products, services, protocols, and standards in support of security systems. You will participate in the review of security implications of new applications, optimizing network integrity by reconfiguring network core equipment, installing local and/or wide area networks, communications software, equipment, and network facilities and suggesting changes and upgrades to the security infrastructure.
The details:
Our environment consists of the below technologies, so the more alignment with this list, the better.
· Firewalls/UTM Technologies: Foritgate, Cisco ASA, SonicWall, and Palo Alto
· IDS/IPS
· Antivirus / Malware endpoint protection (Sentinel One and Crowdstrike)
· Encryption – Symmetric and Asymmetric/Public Keys
· VPNs – IPSEC, SSL
· Proxy services
· DNS & Active Directory with MFA solutions
· O365 with Security Tools
· Email Gateway/Spam Solutions
· Load Balancing: Citrix ADC
· Cloud-based implementations in AWS and Azure
· Web, application, and network security techniques
· Vulnerability Assessment and Penetration Testing tools
What you need for this position
2-3 Years in large IT security environment, Automated vulnerability assessment and scanning tools, Network, host, data and application security in multiple OS environments, IP Networking, IDS/IPS
Should have a minimum of the Security+ certification and working towards certs such as:
Network+, CISSP, CEH, CASP+, Cisco CyberOps, CCNP Security, CCNA, CCNP
· Candidate must be a good “organizational fit” with the rest of the EI team.
· Must be a highly motivated, self-driven individual who can take initiative and work independently
· Excellent written and verbal communication skills
· Strong organizational and project management skills and the ability to multi-task
· Strong creative and analytical skills
· Internet savvy and computer skills
· Must know how to manage multiple deadline schedules
· Strong attention to details and deadlines
· Ability to multitask in a fast-paced environment
· Strong interpersonal skills essential
To learn more about us and our suite of services, visit www.entint.com.