Security Engineer

About The Position

Requirements

• Minimum of four (4) years of related experience in various security development technologies and practices.
• Professional experience with an architectural understanding of network security and application security.
• Experience with work on complex issues where analysis of situations or data requires an in-depth evaluation of variable factors.
• Strong knowledge of networking concepts, protocols (TCP/IP, HTTP, DNS, TLS) and technologies including firewalls, TLS, IDS/IPS system, cryptographic systems, identity management systems, RADIUS, etc.
• Experience with programming/scripting (Python/Perl/bash/etc.).
• Strong understanding of networking topologies and protocols.
• Experience working in multiple security domains with a focus on risk-based analysis of anomalies, detection and response.
• Proven experience with work on complex security issues where analysis of situations or data requires an in-depth evaluation of variable factors.
• Undergraduate degree in Computer Science, a related field, or equivalent.
• Applicants must be legally eligible to work in the United States to be considered. Visa sponsorship is not available for this role.

Responsibilities

• Performs risk assessments, vulnerability management, penetration testing and remediation recommendations for cloud-based technologies and applications.
• Works closely with engineering teams to proactively identify and fix security flaws and vulnerabilities.
• Works with analysts to define the functional and technical needs of an organization and recommends solutions.
• Assesses available technologies to meet needs, and then defines technical specifications and designs.
• Develops and modifies technology systems, addressing functional, performance, security, quality, operations, and monitoring needs.
• Deploys and integrates system monitoring and detections for malicious activity for cloud environments with existing SIEM solution.
• Works with IT Teams to grow and implement organizational security standards and provide security recommendations for services.
• Participates in infrastructure and application architecture reviews and management, as well as provides guidance on security best practices and recommendations.
• Performs analysis of security events and logs.
• Performs security reviews of existing network infrastructure deployments to identify security gaps or vulnerabilities and recommend and prioritize remediation actions.
• Engages in incident response activities.
• Provides guidance on data analysis and reporting including use of complex analysis or machine learning.
• Integrates and builds upon existing automation, security operations, and monitoring systems.
• Stays abreast of security development practices including the research of current and evolving trends.
• Demonstrates good judgment in selecting methods and techniques for obtaining solutions.
• Provides support and troubleshooting of prior developed technology solutions.
• Ensures work is completed in such a way to comply with established compliance and other internal controls.

Benefits

• potential for a semi-annual discretionary performance bonus
• a comprehensive benefits package that includes medical, dental, vision, 401(k), and paid time off
• Relocation assistance may be available.