Security Engineer, Senior

SUMMARY/OBJECTIVE:

Shaw Systems is a national software development company that has an established record of solid financial performance and an excellent reputation for providing quality products. We are seeking a Senior Security Engineer to support the organization from cybersecurity threats. Position will report to the Information Security Officer.

KEY RESPONSIBILITIES:

VULNERABILITY MANAGEMENT – 50%

• Evaluates vulnerability scanners and agents for best practice.
• Integrate vulnerability scanning and reporting to patch management process.
• Coordinate with external and internal engineering and triage teams.
• Lead zero-day and critical vulnerability remediation practices.
• Build and deliver trending vulnerability risk reports and key metrics.
• Interface with leadership and clients, when necessary, to provide insight and data on vulnerability identification, remediation, and risk management including steps taken and lessons learned.
• Lead CI/CD SAST and DAST scan with prioritizing remediation efforts
• Develop security processes, procedures and performance metrics
• Understanding of security requirements for Sarbanes-Oxley, ISO Certifications, Data Privacy laws, and PCI
• Secure software development practices like threat modelling, secure design principles, secure coding, code analysis, security testing

SOC LEAD– 20%

• Improve the security assessment, detection, response, triage, and lessons learned process.
• Act as level II support for security analysts on incidents and events.
• Manage, review, and improve SOC operations.
• Manage and tune Data Loss Prevention (DLP) tools and processes.
• Work directly with external vendors to improve platforms and services
• Testing tactics, techniques, and procedures TTP for the protection of information
• Troubleshoot and repair information security tool implementations and performs root cause analysis

INCIDENT RESPONSE 10%

• Manage Antivirus/EDR and lead response to detected/ quarantined threats.
• Zero Trust application/ network oversight and management.
• Management of Threat Intel.
• Password Breach monitoring.
• Experience in managing Security Incidents

COMPLIANCE – 10%

• Provide and present information for all SOC2 audit requirements on a monthly, quarterly or annual basis as requested through Compliance Management Platform.
• Access Control Audits.
• Ability to communicate issues effectively educate developers to secure coding practice
• Proven experience working in an environment that is certified and compliant with globally recognized Security Framework / Information Security Management System (NIST SP 800-53 or ISO27001)

OTHER RELATED TASKS AS ASSIGNED – 10%

REQUIREMENTS:

• CISSP or equivalent preferred.
• 8+ years Security Engineering/architecture working experience.
• 8+ years with vulnerability management working experience.
• 4+ years of experience as a SOC analysist or equivalent.
• 4+ years of experience with incident response and compliance.
• 4+ years of experience implementing, managing and tuning DLP solutions.
• 4+ years of experience analyzing IDS/IPS logs and tuning triggers.
• 3+ years of experience using an Endpoint Management Tool (CroudStrike, MS Defender, Tanium, etc)
• 3+ years of experience using an Application Whitelisting Tool (ThreatLocker, CroudStrike, etc)
• 3+ years of experience using Compliance Solutions (Archer, OneTrust,
• Experience with SIEM products (i.e. Artic Wolf Networks, Splunk, etc).
• Experience in secure networking, segmenting, routing, and VLANs for hosted and cloud environments.
• Ability to collect, interpret and analyze system and network data.
• Ability to validate review and validate acceptable vulnerability management patching.
• Ability to review and triage active DLP, IDS/IPS, and critical vulnerability security incidents.
• Ability to build leadership and technical level reports from raw data.
• Solid interpersonal, written, and verbal communications.
• Unquestionable integrity, credibility, and character, demonstrating high moral and ethical behavior.
• Ability to shift and manage priorities in a fast-paced cloud hosted environment.
• An overall track record for getting this done with demonstrated business value.
• Sufficient proficiency in speaking, reading, and writing the English language necessary to perform the essential functions of this job.
• 4 Year Undergraduate Degree in Business or Technology, or relevant work experience.

PREFERRED SKILLS:

• Original, out of the box thinker with logical critical thinking skills.
• Experience with SaaS/Software Company.
• Experience in a CI/CD environment.
• Experience in enterprise information Security Engineering design and deployment.

EDUCATION/CERTIFICATIONS:

• 4 Year Undergraduate Degree in Business or Technology, or relevant work experience.

LOCATION:

This position may work from any of the following locations: Hybrid office schedule if within 75 miles of the Houston, TX or Richmond, VA office.  Remote with the ability to travel at least 5% from the following states:  Texas if more than 75 miles from the office location, Virginia if more than 75 miles from the office location, Florida, Georgia, Idaho, Louisiana, Michigan, New Jersey, Minnesota, North Carolina, Pennsylvania, Utah.

** Shaw Systems employees are not authorized to work in any state not listed above our outside of the US without specific written permission from their direct manager and approval from the Information Security Office. **

REPORTING RELATIONSHIPS:

This position reports to the Information Security Officer.

WORK ENVIRONMENT/PHYSICAL DEMANDS:

This is a full-time position. Days of work are Monday through Friday.  The daily schedule may vary from 7 am – 4 pm, 8 am – 5 pm or 9 am – 6 pm, and occasional afterhours or weekend work may be required.  Hours may vary or exceed 40 in any given week depending on the needs of the business.

TRAVEL:

This position requires up to 10% travel domestically.

EEO STATEMENT:

Shaw provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws.  Shaw complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.