Sr. Information Security Engineer

Roles and Responsibilities

Candidate will work as a member of the Corporate Security Team and assist in various day to day operational activities such as:

• Drive Corporate Security Program based on the NIST CSF – Identify, Detect, Protect, Respond and Recover.
• Develops, publishes, and maintains a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines.
• Function as primary liaison with auditors, internal teams and vendors and be the resident expert on systems and services in use for PCI compliance and reporting
• Responsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting.
• Lead the development, implementation, and maintenance of security policies, standards, and guidelines.
• Identify and Monitor Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses.
• Design and implement safeguards to protect the system with the help of network engineers and other members of the Technology Services team.
• Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management.
• Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements.
• Communicate security issues to management via reports, dashboards. Provide weekly metrics on overall security posture.
• Research emerging threats and work with the Security Operations Center (SOC).
• Drive the Third party vendor security evaluation.
• Participate in the security toll-gates on SSDLC projects.
• Implement innovative solutions to scale the program with emphasis on automation where applicable.

Qualifications

Basic Qualifications:

• Bachelor's Degree in Business, Computer Science or in a STEM major (Science, Technology, Engineering, or Math).
• Minimum of 8 years of experience in Information Security
• Experience in at least one full lifecycle supporting PCI compliance is a must have
• Experience in managing and maintaining a vulnerability management program using Qualys is a must have
• Experience in developing content in Splunk – searches, alerts (including POC and tuning), dashboards, Apps.
• Experience of Security Incident and Event Management (SIEM) tools (Splunk) – ingesting data (Forwarders, HTTP Event Collectors, add-ons), troubleshooting Splunk Installation.
• Experience in Endpoint security (EDR) – Detection and Response. Help create policies and SOP for Response workflow. Experience in Cortex XDR preferred.
• Experience in Security evaluation of third-party tools.
• Experience in Email Security and running phishing campaign
• Experience in Incident Management
• Experience in system and network security.
• Experience in Network Penetration testing.
• Knowledge of software development, computer networks and Internet threat activity.
• Programming experience in python, perl and HTML/JS
• Previous enterprise or platform/cloud vulnerability management experience and Cloud Security is a plus
• Excellent written and verbal communication skills, including experience engaging with executive and technical audiences.
• Must be able to work in a fast paced, high profile environment.