Cyber Security Engineer
- CCNA Certification Plus
- Measure and analyze cyber security posture across the organization and recommend improvements and solutions to current cyber security issues and risks.
- Stays up to date on current threats, vulnerabilities, attacks, and countermeasures – maintains our CVE remediation program.
- Provide support in evaluation of security tools for the firm.
- Assists in development and management of end point security, including hardening, tools, and procedures.
- Writes situational analysis for high-risk threats and suggests appropriate courses of action for remediation.
- Assists in the development and refinement of patch and vulnerability management processes and solutions.
- Assists in the development and refinement of incident response procedures and documentation.
- Assists in coordinating cyber security incident response across the enterprise.
- Assist various teams in capturing and refining information protection requirements, integrating those requirements into system designs and ensuring program compliance.
- Assist in planning and engagement efforts for organizational security evaluations, systems analysis, and security architecture reviews.
- Perform vulnerability and penetration testing against our applications, services, and environments, reporting underlying security issues and proposing appropriate security controls.
- Support research and implementation of the latest security standard methodologies, trends, threats and vulnerabilities, and technology frameworks and support/recommend best security practices including security compliance activities including threat and vulnerability management
- Conduct security assessments, architecture reviews and threat modeling of the application deployment environment and IT infrastructure, including security support for SaaS applications in the environment.
- Ability to design, architect and implement end-to-end IT security level solutions to promote security related initiatives and improvements.
- Strong experience troubleshooting and analyzing complex technical information and conveying to different types of audiences that enables decisioning
- Good understanding of OWASP Top 10 and SANS 25.
- Identify threats, security gaps, and work to create steps and security policies to defend against them
- Monitoring of SIEM alerts and triaging with other security tools.
- Provider configuration and operational support for security systems such as firewalls, antivirus, and IDS/IPS software
- Monitor network traffic for suspicious behavior
- Investigate and support resolve potential security incidents.
- Update security operations processes and procedures.
- Analyze current security requirements and make suggestions for improvements
- Evaluate the impact of proposed changes, with attention to scalability and sustainability over time
- Prepares and/or conducts written and oral reports and presentations.