Job Title: Security Engineer

Job Description

We are seeking a highly skilled Security Engineer to join our team. This role involves working on projects with moderate to highly complex environments, utilizing high availability concepts. The successful candidate will communicate cybersecurity risks and mitigation strategies to stakeholders, collaborate with various teams to implement security controls, and develop comprehensive cybersecurity governance, risk, and compliance programs.

Responsibilities

• Serve as a technical member on projects with moderate to highly complex environments, utilizing high availability concepts.
• Communicate cybersecurity risks and mitigation strategies to stakeholders at all levels of the organization.
• Collaborate with IT, security, and other relevant teams to implement security controls and address security concerns.
• Develop and implement project plans within budgetary, schedule, and resource constraints.
• Collaborate with other members of the Engineering team in developing comprehensive cybersecurity governance, risk, and compliance programs.
• Capture, analyze, decompose, and create requirements for infrastructure security systems, products, and subsystems of moderate complexity.
• Ensure alignment of cybersecurity initiatives with business objectives and regulatory requirements.
• Develop and implement risk mitigation strategies and controls.
• Use an interdisciplinary approach to design, develop, document, test, and maintain network security systems.
• Author, review, and maintain documentation during all phases of the system design life cycle.
• Conduct threat and vulnerability analysis, risk mitigation, information assurance, and penetration testing.
• Apply security/cybersecurity methodologies to network and systems design to provide secure services.
• Configure and install various network security devices and services such as stateful firewalls, web application firewalls (WAFs), SIEM, AA, IDS/IPS, DDoS, and Anti-Malware/Anti-Virus Protection.
• Provide post-fielding support, resolving operational issues involving L2 and L3 in a multi-routing network infrastructure.

Essential Skills

• Experience with RMF, identity access management (IAM), CISSP, NIST, and ISO standards.
• Proficiency in configuring and managing firewalls and Cisco network devices.
• STEM degree with a strong understanding of the project life cycle, including requirements development, analysis, design, test, implementation, and post-fielding support.
• Experience with Cisco and infrastructure/networked environments, including hardware such as routers, switches, and firewalls.
• Experience in WAN-LAN network security infrastructure.
• Ability to lead others in Governance, Risk, and Compliance (GRC) compliance, assessment, and remediation tracking.
• Knowledge of Cybersecurity policies and applicable frameworks such as NIST and ISO.
• Experience with tools like Tenable, Rapid 7, Nessus, IDS, IPS, SIEM, Splunk, and Monte Carlo simulation software.

Additional Skills & Qualifications

• Knowledge of Rapid 7, Tenable, and Nessus.
• Experience with intrusion detection/prevention systems (IDS/IPS).
• Familiarity with identity access management and VPNs.
• Experience with security monitoring and detection tools such as SIEM (e.g., Splunk).
• Demonstrated quantitative and qualitative risk analysis skills, including Monte Carlo Simulation, enterprise risk analysis, and statistical analysis.

Work Environment

This role is onsite for 5 days a week with flexible working hours. You will be working in a team environment with opportunities for travel if desired. You will be involved in high reliability systems for North America.