IT Security Engineer

» IT Security Engineer
Information Technology
in Clearwater
, FL
Reference: 19-03390

Description:

Serves as a key technical member of the IT Security team assisting in the development, implementation and maintenance of IT Security related activities required to safeguard the company’s information and technology assets and to ensure compliance with the laws and regulations the company needs to comply with.

Key Duties and Responsibilities:

  • Performs or reviews security incident investigations
  • Assist in formulating security architecture recommendations and security services designs
  • Perform project leadership tasks on select security projects including development of requirements, evaluation of competing products, selection and implementation of products
  • Strong understanding of and familiarity with application and network security
  • Consults, validates and verifies system and application security designs
  • Evaluates implements and/or integrates security solutions
  • Assist in developing responses to internal & external audits, penetration tests and vulnerability assessments
  • Recommends and coordinates the application of fixes, patches, & recovery procedures in the event of a security breach
  • Research emerging technologies in support of security enhancement and development efforts
  • Conduct risk assessments, penetration tests and diagnose internet/extranet security, intrusion attempts, and cyber-crime response
  • Performs other duties as assigned

Education:

  • A Bachelor’s Degree in Science or in an IT related field
  • 2 additional years of relevant experience may be substituted in lieu of degree (Required)

Work Experience:

  • 5+ years of experience in IT related field
  • Experience doing internal and external penetration testing i.e. white hat hacking
  • ┬áIT Security Auditing experience

Licenses and Certifications:

  • Certified Information Systems Security Professional (CISSP)
  • GIAC Penetration Tester (GPEN)
  • GIAC Certified Incident Handler (GCEH)

Skills:

  • Strong understanding of and familiarity with application and network security
  • Ability to work as part of a team

Technology:

  • Knowledge of Information Security Frameworks (ISO 27002, NIST,800-53, COBIT, HITRUST, etc.)
  • Knowledge of network security practices & tools (Firewalls, IDS/IPS, DLP,SIEM), Vulnerability Management, Application Security, Penetraion testing (white hack hacking)
  • Must be able to perform hands-on support for a wide range of security technologies including, but not limited to: SEIM, IDS/IPS, HIDS, malware analysis and protection, content filtering, logical access controls, identity and access management, data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, eDiscovery & forensics software, and security incident response etc.

Level of Supervision Received:

  • Plans and arranges own work, refers only unusual cases to supervisors or others