Lead Information Security Engineer

OCLC Online Computer Library-posted 3 months ago
Full-time • Senior
Hybrid • Dublin, OH
1,001-5,000 employees
Religious, Grantmaking, Civic, Professional, and Similar Organizations
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

We're looking for a Lead Information Security Engineer to help strengthen and protect our enterprise security environment. In this role, you'll be responsible for monitoring, developing, and supporting security infrastructure and solutions, while working closely with a collaborative team that values knowledge sharing and innovation. This is a hybrid role and requires you to be on-site at our corporate headquarters in Dublin, OH three days a week. The Lead Info Security Engineer is responsible for monitoring, developing, and supporting the security infrastructure and other security solutions within the enterprise. The Lead Info Security Engineer is tasked with protecting computer assets by establishing and monitoring technical vulnerabilities and security monitoring tools, such as Intrusion and Malware Detection Tools. This position is also responsible for identifying and responding to security and operational incidents as appropriate. Other duties include configuring security systems, performing advanced maintenance activities, and conducting functions such as vulnerability assessments, penetration testing, and developing and implementing new technologies, policies, and procedures.

  • Leads and enhances OCLC's information security test and evaluation program, including management of ongoing vulnerability and secure configuration deviation identification, and coordinating remediation activities with system, application and process owners, especially as they relate to application development.
  • Leads OCLC's computer incident response practices including incident management, coordination, analysis and investigation of potential security events.
  • Leads OCLC's application development security program as it relates to incorporating the appropriate controls into the software development process.
  • Analyzes & assists the development and interpretation of information security and security operations processes and requirements. Translates requirements and designs to assist operations.
  • Leads efforts to install and implement system patches, service packs and version upgrades as assigned; leads process improvement efforts; familiar with industry best practices; develops and maintains a roadmap for future system improvements; ushers through simple to complex system environment changes.
  • Assist with implementing aspects of the Information Security Risk Management Program related to identification, measurement, monitoring and reporting on security related risks.
  • Conducts security vulnerability scans of operating systems and applications, produce reports, and make recommendations for vulnerability remediation.
  • Supports security awareness by providing orientation, educational programs, and on-going communication.
  • Plans and recommends security measures to protect an organization's computer networks and systems.
  • Serves as mentor and support as needed for less experienced Security Analysts.
  • Strong experience in security design/engineering, web application security, and incident response.
  • Familiarity with SIEM, EDR/XDR, SOAR, WAF, and vulnerability management tools.
  • Ability to take initiative, solve problems proactively, and communicate technical concepts clearly.
  • 7+ years experience in an information technology role with knowledge of IT security and Bachelor's degree in business administration, computer security, or a technology related field (preferred).
  • Attention to detail, ability to organize work, and follow-up skills are critical to the successful performance of position responsibilities.
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences.
  • Ability to prioritize and address multiple projects and meet deadlines is critical.
  • Strong troubleshooting and organizational skills.
  • Self-reliant, resourceful but able to know when to ask for help.
  • Understanding of Security frameworks, such as ISO/IEC 27001 or NIST 800-53.
  • Knowledge of Information Security Policies, Informing Others, Microsoft and Linux System Administration, Network Security, Firewall Administration, Problem Solving, Process Improvement, Project Management, On-Call, Network Protocols, Routers, Hubs, and Switches.
  • Certifications: COMPTIA Security+, Network+, CCNA, or other security certifications preferred.
  • Experience with automation to enhance efficiency and response.
  • Best-in-class health coverage.
  • Retirement plans with generous company contributions.
  • Paid parental leave and adoption assistance.
  • Tuition reimbursement and Public Service Loan Forgiveness eligibility.
  • Free use of on-site fitness center, gym sports, group exercise classes, and game room.
  • Onsite catering and cafeteria subsidized by OCLC.
  • Health and wellness events.
  • Work environments with individual and team spaces and the latest technology tools.
  • Company-subsidized pricing on local tickets and memberships.
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Lead DevOps Engineer Resume Examples
Lead DevOps Engineer Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service