IT Security Engineer

IT Security Engineer Las Vegas Full time Posted 19 Days Ago R25_0550 Job Description: Position Overview The primary responsibility of the IT Security Engineer includes implementation of security configuration, certificate management, implementations of firmware; firewall rules, proxy rules; and patching for all end points (workstation, mobile, network, server, cloudapps). This position reports to the Senior Manager - IT Security and in collaboration with other IT team resources, partners with Cyber Security organization to drive the secure configuration(s) of the enterprise. All duties are to be performed in accordance with departmental and Las Vegas Sands Corp.’s policies, practices, and procedures. All Las Vegas Sands Corp. Team Members are expected to conduct and carry themselves in a professional manner at all times. Team Members are required to observe the Company’s standards, work requirements and rules of conduct. Essential Duties & Responsibilities Perform implementation of security configuration, certificate management, implementations of firmware; firewall rules, proxy rules; and patching for all end points (workstation, mobile, network, server, cloudapps). Report to the Senior Manager - IT Security and in collaboration with other lT team resources, partners with Cyber Security organization to drive the secure configuration(s) of the enterprise. Maintain an inventory of service accounts used throughout the desktop computing environment, including the associated software/applications for which they are used. Maintain an inventory of generic and/or shared user accounts used throughout the organization. Managing System Center Configuration Manager (SCCM) including deployment of IT Security end point agents, desktop patch deployment status, etc. Ensure patches are deployed to all supported workstations, servers, network devices and applications. Ensure secure configuration of all supported workstations, servers, network devices and applications. Manage submission of exceptions related to patch and configurations that cannot be applied. Facilitate change control and management for patching, configuration, software implementation, upgrades and certificate implementation for the enterprise. Responsible for running the cyber security tool suite. Ensure tool effectiveness in terms of making sure it is running according to vendor specification, configuration, and deployment requirements. Ensure package development used to roll end point agents and associated configurations out across the desktop computing environment. Maintain an inventory of all deployed network devices including; firewalls, routers, switches and other network gear. Maintain an inventory of all Virtual Local Area Networks and Network Internet Protocol (IP) Addresses, address space and IP assignments, including the development and maintenance of the IP Address Management (IP AM) for the enterprise. Orchestrate deployment of secure configurations and firmware packages for all network devices where security posture is affected. Ensure security firmware updates are deployed to all supported network devices. Maintain direction and focus through proactive planning and organized approaches to work. Minimum Qualifications At least 21 years of age. Proof of authorization to work in the United States. Master’s degree in Cyber Security, Electronics and Communications Engineering, a related field, or a foreign equivalent plus 2 years post-baccalaureate experience in job offered or any engineering/cyber security related job titles. Applicant must possess 2 years of experience in the following: o Network access and traffic control with network firewalls.  o Implementing security configuration. certificate management, implementations of firmware, firewall rules, proxy rules. o Facilitating change control and management for patching, configuration, software implementation, upgrades, and certificate implementation for the enterprise. o Ensuring that security firmware updates are deployed to all supported network devices. o Orchestrating deployment of secure configurations and firmware packages for all network devices where security posture is affected. Telecommuting is available.