Security Operations Engineer

About the position

As a member of the Gainwell Technologies Security Operations Team, you will be a part of a dynamic team protecting Gainwell's critical assets. This position will engage in audit response requests by evaluating existing and emerging audit standards, evaluating and recommending standard responses, and tracking audit requests and responses. The position also requires the ability to respond to security incidents by responding, investigating, determining strategies for containment and remediation, and leading investigative teams.

Responsibilities

• Designs audits of computer systems to ensure they are operating securely, and that data is protected from both internal and external attacks.
• Assesses assigned system to determine system security status.
• Designs and recommend security policies and procedures to implement; ensure compliance with policies and procedures.
• Designs training materials for computer security education and awareness programs.
• Evaluates highly complex security systems according to industry best practices to safeguard internal information systems and databases.
• Defines and reviews security requirements and subsequently reviews complex systems to determine if they have been designed and established to comply with established standards.
• Leads investigations of security violations and breaches and recommends solutions; prepares reports on intrusions as necessary and provides analysis summary to management.
• Responds to more complex queries and requests for computer security information and reports from both internal and external customers.
• Provides technical consultation on highly complex tasks; may assist and/or provide limited direction to lower-level technical personnel.
• Provides product recommendations of security packages to customers; Reviews vendor products and makes recommendations as appropriate.
• Conducts cost analyses to determine the feasibility of new products for clients.

Requirements

• Bachelor's degree in computer science, management information systems, or related field preferred.
• CISSP certification preferred.
• Nine or more years of experience in computer science, management information systems, or data security experience.
• Experience working with MARS-E, HIPAA, SOC1/SOC2, and NIST auditing standards.
• Experience working with information security practices, networks, software, and hardware.
• Experience working with computer programming.
• Experience working with operating systems.
• Experience working with computer desktop packages such as Microsoft Word, Excel, etc.
• Experience working with security architecture.

Benefits

• Generous, flexible vacation policy.
• 401(k) employer match.
• Comprehensive health benefits.
• Educational assistance.
• Leadership and technical development academies.