Architect, Security

Responsibilities:

• Analyze, troubleshoot and investigate security related incidents, events and alerts.
• Maintain, configure and analyze security platforms and tools.
• Evaluate security gaps using vulnerability scanners and manual techniques.
• Provide reports and metrics for risk analysis and leadership reporting.
• Remain current on emerging security trends and technologies used. Evaluate existing and proposed architectures, recommend and implement security measures, enhancements and mitigate risk.
• Assist in the development, trials and evaluations of security tools, operations and procedures.
• Create baselines for the secure configuration and operations of all in-place systems and devices, apply frameworks for new systems and devices.
• Provide support for audit and remediation activities as required.
• Participate in DR exercises and continuous improvement processes.
• Establish and maintain a strong working relationship with all team members.
• Successfully manage time and technical responsibilities to meet expectations and deadlines.
• Provide support as needed to Incident Response related events.

Qualifications:

• Bachelors degree in computer science, networking, engineering, or other computer-related field of study, or demonstrated ability to meet the job requirements through a comparable number of years of applicable work experience.
• 5-7 years of experience in IT and a minimum of 2 or more years of experience in a cyber-security role with strong working knowledge and understanding of cyber security, frameworks, incident management, operations and application security best practices
• Experience with SIEM, Event Logging, Alerting systems.
• Experience with:
  • Palo Alto and Cisco Firewalls
  • Networking Technologies
  • CrowdStrike or Advanced Endpoint Protection Solutions
  • Application Whitelisting
  • Data Protection & File Analysis
  • Incident Response & Threat Hunting
  • NIST & CIS Frameworks.
  • Operating Systems Hardening, Active Directory Group Policy.
  • Network, host, application and data security; Vulnerability Scanning, internal and external perimeter protection, virtual private networks (VPN); intrusion detection & protection; incident handling and forensics.
  • Network and systems performance and availability monitoring solutions.
• Proven analytical and problem-solving abilities.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Excellent written, oral, and interpersonal communication skills and able to present ideas in business-friendly and user-friendly language.
• Team-oriented and skilled in working within a collaborative environment.

#LI-PD1