About the Position:
Install, document, troubleshoot, and maintain network security infrastructure and software. Configure security tools and applications to improve detection and response capabilities, track performance of controls, streamline internal processes, and make improvements to defensive controls.

What you do daily:

• Collaborative issue remediation on a broad set of IT related issues: Cybersecurity risks, regulatory compliance, data protection, user access, network controls, etc.
• Configure network security controls including firewalls, IDS/IPS, email gateways, WLAN, vulnerability scanners, and endpoint controls such as EDR and DLP.
• Respond to security events, validate findings, and remediate gaps identified by vulnerability scanning and penetration testing.
• Plan, design, implement and support security tools used for preventative controls, detection of events, and incident response efforts.
• Create and maintain system as-built documentation, security infrastructure topology, data flow diagrams, internal knowledgebase, and incident runbooks.
• Proactively manage updates and patching of security applications and device software/firmware and hardware.
• Participate in project planning and execution as information security SME and ensure adherence to internal policy and security best-practices.
• Participate in blue/purple team exercises, design and execute DR/BCP/IR tabletop exercises, update processes and documentation based on lessons learned.

What makes you a good fit: (Qualifications)

• A computer science related baccalaureate degree from an accredited college, or equivalent experience
• Minimum of 5 - 8 years’ experience in security in an enterprise environment.
• Experience with vulnerability scanning applications, log management and alerting platforms, and packet analyzers
• Experience with network segmentation and/or security zones for applicable data protection according to data classification.
• A team player with a willingness to establish a strong positive working relationship with all areas of the business.
• Willing to share knowledge with co-workers and to assist them in understanding technical and business topics.
• Willing to learn new tools and technologies as needed.
• Working knowledge of information systems security standards and practices (e.g., access control, system hardening, system auditing, log file monitoring, security policies, and incident handling).
• Experience with detection and response tools including Network Behavior Anomaly Detection, Data Loss Prevention, Email Gateway services, Sandboxing, DDoS Mitigation, WAF, Forward/Reverse Proxies, DNS Security, etc.
• Demonstrated experience of “hands-on” security knowledge of one or more of the following platforms: Windows, Apple IOS, Linux.
• Working knowledge of networking protocols, web technologies, and cloud computing.
• Ability to interpret information security data and processes to identify potential Indicators of Compromise (IoC).
• Ability to quickly understand complicated data flows in order to identify and validate security requirements.
• Ability to work effectively, independent of assistance or supervision.
• Ability to clearly communicate Information Security matters to executives, auditors, end-users, and engineers using appropriate language, examples, and tone.
• One or more of the following advanced professional security certifications: CISSP, CRISC, or CISM (or requisite experience to attain within 12 months)

Preferred experience:

• Hands-on experience implementing and supporting Palo Alto firewalls.
• Experience with wired and wireless network-based passive and active controls like IDS and IPS.
• Familiarity with ITILv2/v3 processes such as Service Support, Service Delivery, or Continual Service Improvement.
• Familiarity with Regulatory Compliance and industry standards and frameworks such as ISO27k, SSAE18 SOC 2, and PCI.