Enterprise IS Security Engineer

About The Position

Requirements

• 4 year Degree in Information Technology or Business related field.
• Certification in industry recognized cybersecurity qualifications (e.g. CompTIA Security+, CISSP)
• Minimum of 4 years experience in Cybersecurity.
• Strong working knowledge of TCP/IP, DNS, Active Directory, IP Address Management
• Working knowledge of Firewalls (ISA, CISCO ASA, Palo Alto)
• Experience with Endpoint Security and SIEM systems.
• Experience with Infrastructure related Security tools and procedures - perimeter and internal.
• Experience with securing Cloud based workloads, services and resources.
• Strong Knowledge of encryption and certificate infrastructure.
• Excellent Oral and Written Communication skills.
• Excellent Documentation skills.
• Consistency and attention to detail.
• Ability to work well with others while maintaining a high degree of confidentiality, honesty and integrity.
• Able to do international and/or domestic travel as required

Nice To Haves

• Project Management Experience beneficial.
• Experience in Cloud Architecture and design in a multi-forest and domain environment.
• Knowledge and experience in Windows Server OS and hardware.

Responsibilities

• Implement, manage and monitor M365 and Cloud services security tools and controls.
• Implement, manage and monitor appropriate identity and access management tools and controls.
• Implement, manage, and monitor security measures that support Zero Trust Architecture.
• Implement, manage and monitor Endpoint Security systems (application whitelisting, device control, Anti-Virus, encryption).
• Create, maintain and implement Active directory Group Policy Objects related to cybersecurity.
• Management over the patch rollout system and process.
• Manage the end user security awareness training platform.
• Management of Password Management tools
• Architect and implement enhanced Domain Security structures.
• Enhance and maintain Pyxus Cybersecurity Framework plans and documentation.
• Ensure Security/Cybersecurity best practices are being followed.
• Implement, manage and monitor enterprise IDS and IPS systems.
• Manage Internal Certificate infrastructure.
• Manage External Certificates.
• Manage monthly network vulnerability tests and the remediation process
• Assist as required regarding any legal or audit issues requiring IS resources for investigative or forensic data analysis efforts.
• Implement, maintain and monitor Data Loss Prevention tools.
• Work with application development teams to ensure application security.
• Monitor Internet Security sites for information on new threats (Microsoft, Cisco, CERT & SANS).
• Keep abreast of emerging IS security threats.
• Keep abreast of best practices and new technologies for mitigating IS security threats.
• Provide upfront cybersecurity guidance and input into IS projects and policies so that security is not an afterthought.
• Contribute content to cybersecurity updates for C-level executives.
• On call 24X7 for suspected intrusions and incident response.