Security Engineer

System and Cloud Focus:

• Strong foundation securing Windows server environment to include OS, applications, and SQL data stores.
• Experience with establishing and maintaining policies and guardrails for cloud resources and workloads.
• Hands-on experience securing cloud native technologies such as Microsoft Azure tenants, Kubernetes, containers, encryption, and key management. 
• Plan and deploy WAF technologies.
• Strong experience with networking, firewalls, load-balancers for On-Premises and in Cloud environments
• Good understanding of virtualization technologies - VMs, Containers, VMware
• Experience in automation with cloud solutions and with Terraform or similar IaC.

Endpoint Focus:

• Experience with configuring and managing Microsoft Defender and Intune for endpoint protection and device management across the organization.
• Experience with managing and maintaining systems such as Netskope, Proofpoint, Tenable, Trend Micro, Intune; in addition to other key security products.

• Hands-on experience with security technologies such as antivirus, endpoint firewall, endpoint encryption.
• Serve as a subject matter expert on endpoint security technologies, providing guidance on deployment, configuration, and optimization.
• Stay abreast of emerging threats and vulnerabilities affecting endpoint security and incorporate threat intelligence into security strategies and operational procedures.

Infrastructure Focus:

• Expertise in managing global presence of Palo Alto NGFW, Meraki, and NSX DFW.
• Firewall rule analysis, clean up, requests and troubleshooting.
• URL Requests using content filtering in Meraki.
• Applying hardening and best practices to firewalls
• Plan, design, and implement micro-segmentation solutions.
• Conduct vulnerability assessments, penetration tests, and audits to identify and mitigate network security risks and gaps.
• IDS/IPS deployment, maintenance    
• Documenting and maintaining the documentation for the networking infrastructure, data flows, security compliance, and ports-and-protocols requirements.

Essential Criteria:

• Bachelor's degree in computer science, information technology, cybersecurity, or a related field. Advanced degrees and certifications (e.g., CISSP, CEH, CISM) are a plus (or related equivalent experience)
• Strong understanding of networking protocols, operating systems, and cybersecurity principles
• 3+ years of cybersecurity work experience in one or more of the above disciplines.
• Experience with risk assessment methodologies, security frameworks (e.g., NIST, ISO 27001), and regulatory compliance requirements (e.g., GDPR)

Qualifications:

• Collaborate with cross-functional teams to integrate security controls into overall security architecture and policies.
• Provide technical expertise and guidance to junior team members and other IT staff on security best practices and procedures.
• Stay current with emerging threats and security technologies and recommend enhancements to the security posture accordingly.
• Manage incident response tickets and participate in on call rotation.
• Accustomed to working in a complex environment developing complex solutions in a cybersecurity context.
• Must have very strong problem solving/troubleshooting skills.
• Must be able to pay strong attention to detail while multi-tasking and maintaining organizational skills.
• Time management and strong communication skills
• Ability to explain technical concepts to inexperienced users.
• Ability to communicate at a conceptual level to management and at a detailed level to engineers and administrators.
• Proven ability to work independently and collaboratively in a fast-paced environment, managing multiple priorities and delivering high-quality results on time.