Company Description

Fortress Security Risk Management is a nationally recognized full-spectrum cybersecurity firm dedicated to protecting its clients from the financial, operational, and emotional ravages of cybercrime. Headquartered in Cleveland, OH, Fortress primarily has a regional footprint but since digital technology has no borders, provides security services to clients in 13 states and in over 100 countries. 

Fortress provides a comprehensive and integrated suite of security services featuring:

Security Consulting

• Incident Response Planning
• GRC Advisory
• Frameworks Assessments
• M&A Cyber Due Diligence
• 3rd Party Vendor Risk
• Technical Testing
• Multi-Factor Authentication
• Identity & Access Management
• Insider Threat Detection
• Training/Phishing Tests

Managed Security Solutions

• Cyber-as-a-Service and Virtual CISO
• Managed Patching
• Endpoint Detection & Response
• Managed SIEM
• Managed Backup
• Help Desk

All managed and monitored in wholly owned and operated 24/7/365 U.S. security operations centers.

 Incident Response

• Contain & Control
• Threat Elimination & Disaster Recovery
• Digital Forensics & Investigations
• Litigation Support
• Remediation
• Crisis Project Management
• Post Incident Assessments & Improvement Roadmap

Fortress associates are dedicated to the communities in which we serve and actively participate on numerous nonprofit boards and tirelessly donate our time to many charitable organizations. 

Job Description

A cybersecurity engineer is responsible for planning and carrying out security measures to protect a company's computer networks and systems. This role’s primary function is to support the consulting team through technical assessments, engineering projects, general technical security guidance for our customers, and assisting in tabletop exercises. They also participate in supporting the incident response team to contain, eradicate and recover from a security incident, as well as support the forensic team in gathering digital evidence. Their secondary tasks involve reporting breaches or weak spots, exploring new IT trends, educating the company's information security team on security.

Key Tasks and Responsibilities:

 • Engineering support for containment, eradication, and recovery of a security incident response

 • Conducts evidentiary procedures with IR team

 • Works closely with the recovery manager and incident commander

 • Assists in development of documentation

 • Assists in system assessments

 • Assist in creation of proposals and scopes of work

 • Assists with security monitoring, alerting and other tasks

 • Participates in setting strategic direction and advises leadership on Information Security issues, systems, processes, products, and services

 • Assists in providing countermeasure support to quickly counter malicious threats to customer information systems while assisting in computer evidence seizure, computer forensics, and data recovery

 • Assists in system assessments and recommending authorization activity guidelines

 • Maintains knowledge about Office 365 security, governance, and compliance

Qualifications

• Knowledge, insight, and understanding of business concepts and processes that are needed for making sound decisions in the context of the customers’ business; ability to apply this knowledge appropriately to diverse situations

 • Strong analytical ability with the capability to determine the root cause of problems and issues and provide solutions

 • Extremely detail oriented

 • Excellent work ethic and professionalism

 • Ability to train customers in security solutions and procedures

 • Organizational skills with the ability to handle multiple tasks

 • Must be a team player with excellent communication skills and possess the ability to manage assignments independently

 • Understanding of IT security needs and procedures Experience and Educational Requirement necessary to the job

 • Associate degree plus 3 years of work experience • OR 5 years of relevant work experience

 • Experience in systems engineering: AD, AAD, server and desktop operating systems, basic database management, virtualization systems, NAS and SAN, and applications in a server environment

 • A , Network , Security , Certified Ethical Hacker (CEH), or equivalent technical certification Preferred

 • Information security related experience in areas such as security operations, incident analysis, incident handling and vulnerability management or testing, system patching, log analysis, intrusion detection or firewall administration

 • Experience in network operations and/or systems engineering

• Experience in Microsoft (O365, InTune, Azure, PIM)

 • COMPTIA CySA , SSCP, or CSSP

Physical Requirements:

The physical requirements of this job include frequent sitting with occasional walking around, carrying light objects, grasping and reaching for things, rare stooping/crouching, clarity of vision, speaking and listening ability. The mental requirements of this job include general intelligence, motor coordination skills, coordination of hands, eyes and feet, verbal and numerical intelligence. The workplace environmental conditions are that of a temperature controlled and clean office setting. Occasional driving to other office or customer locations. Regular attendance and punctuality are an essential job function of this position. In addition, the duties of this job need to be performed at our client offices for the purpose of interaction and collaboration with colleagues and/or clients as necessary, the ability to adequately supervise the associate, and/or the availability of necessary equipment utilized for regular job functions. This job description in no way states or implies that these are the only duties to be performed by the employee occupying this position. Employees will be required to follow any other job-related instructions and to perform other job-related duties requested by their supervisor.

This job description in no way states or implies that these are the only duties to be performed by the employee occupying this position. Employees will be required to follow any other job-related instructions and to perform other job-related duties requested by their supervisor.

Additional Information

This job description in no way states or implies that these are the only duties to be performed by the employee occupying this position. Employees will be required to follow any other job-related instructions and to perform other job-related duties requested by their supervisor.