Sr. Cyber Security Engineer - Remote

Overview
OSI Systems and its subsidiaries is a vertically integrated provider of specialized electronic systems and for components that meet the critical needs in the homeland security, healthcare, defense, and aerospace industries. As a global company, we are dedicated to developing solutions for our customers and the people they serve to lead the way to a safer and healthier world.
OSI Systems is seeking a Sr. Cyber Security Engineer to join their team. Reporting to the VP, Information Security and Risk Management, this individual will be involved with Cyber Security Engineering projects along with day-to-day security operations tasks to achieve Information Security long term goals.
Responsibilities

• Designing enterprise scale Cyber Security Solutions in alignment with Information Security Strategy.
• Engineering, implementation, and monitoring of security controls for the protection of network, systems, data and endpoints in a multi-cloud environment, to help mitigate security risks. Work with the IT Infrastructure, IT Applications, IT Compliance and Governance teams to implement these controls.
• Risk assessment of M365 platform, AWS, Azure and third-party SaaS services, make recommendations to mitigate risk.
• Identify and define security requirements for Business and IT Projects. Analyze, report, and assist in management of security-related risks, including reporting on outcomes and proposing further security improvements.
• Key member in responding to and triaging security incidents, including guiding security operations and Security Engineers.
• Perform service management for security platforms, including problem, change, configuration, and asset management.
• Work with third-party security service providers to ensure service delivery objectives are met.
• Prepare and publish standards, processes and operating procedures.
• Uphold the company's core values of Integrity, Innovation, Accountability, and Teamwork.
• Demonstrate behavior consistent with the company's Code of Ethics and Conduct.
• It is the responsibility of every employee to report to their manager or a member of senior management any quality problems or defects in order for corrective action to be implemented and to avoid recurrence of the problem.
• Duties may be modified or assigned at any time to meet the needs of the business.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or related field required.
• 8+ years of work experience in information technology combined with information security experience required. 8+ years of work experience in Cyber Security, in a hybrid cloud computing environment (on-premise, AWS and Azure) preferred.
• Hands-on experience in network security (Firewalls, VPN, Proxys, Web Application Firewall, CASB, etc.), systems security Windows and Linux), cloud security (AWS and Azure), endpoint security and identity and access management is required.
• Hands-on experience in vulnerability management, configuration management, media protection, contingency planning, log management, and data protection methods is desirable.
• Experience in M365 E5 Security Suite, AWS and Azure Threat Detection and Response techniques.
• Hands-on experience in implementing NIST 800-171 and ISO 27002 security control frameworks.
• Familiarity with web related technologies (Web applications, API, etc.) and of network/web related protocols.
• Thorough understanding of the security principles, techniques, and protocols, including defense-in-depth, network segmentation, privileged access management, common application security flaws, and commonly known ports.
• Professional information security-related certifications such as CISSP, GSEC, CCSP.
• Proven ability to lead a project from start to finish from the technical side.
• Previous experience working in a global enterprise environment a plus.
• Good verbal and written communication skills in English. Capability to clearly communicate information security concepts and risks.
• Problem solving skills and ability to work under pressure.
• Ability to work independently as well as in a team structure.
• Willingness to accommodate other time-zones.
• Off-hours support may be needed.
• Familiarity with standards and frameworks such as NIST 800-53, PCI-DSS, HIPAA Security and Privacy Rule, ISO/NIST Risk Management.

Please review our benefits here: Life at OSIThe specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location and date of hire. Please note that the salary information shown above is a general guideline only. Salaries are based upon candidate experience and qualifications, as well as market and business considerations.
NOTICE TO THIRD PARTY AGENCIES
OSI Systems, Inc. and its subsidiaries (collectively "OSI") does not accept unsolicited resumes from recruiters or employment agencies. If any person or entity, including a recruiter or agency, submits any information, including any resume or information regarding any potential candidate, without a signed agreement in place with OSI, OSI explicitly reserves the right to use such information, and pursue and/or hire such candidates, without any financial obligation to the person, recruiter or agency. Any unsolicited information or resumes, including those submitted directly to hiring managers, are considered and deemed to be the property of OSI.
Equal Opportunity Employer - Disability and Veterans
EEO is the Law
Poster Link: https://www.eeoc.gov/sites/default/files/2022-10/22-088_EEOC_KnowYourRights_10_20.pdf
OSI Systems, Inc. has three operating divisions: (a) Security, providing security and inspection systems, turnkey security screening solutions and related services; (b) Healthcare, providing patient monitoring, diagnostic cardiology and anesthesia systems; and (c) Optoelectronics and Manufacturing, providing specialized electronic components and electronic manufacturing services for original equipment manufacturers with applications in the defense, aerospace, medical and industrial markets, among others.