Security Engineer
The Security Engineer is responsible for helping grow the information security and security risk management programs at Unison. You will be responsible for securing Unison’s infrastructure by working closely with the IT infrastructure, architecture, product, and cloud teams in defining security standards, providing security oversight, and driving security projects to reduce the cybersecurity risk to Unison.
In addition, you will be responsible for maintaining security operations by leveraging managed security service providers, performing incident response, application and infrastructure security assessments, penetration testing, implementing and supporting new security tools and technologies, improving situational awareness within the environment by leveraging monitoring systems, and scripting and coding where necessary.
Deliverables on which you’ll be measured:
- Provide security advisory services support by recommending improvements to information security systems, procedures and processes based on industry best practices and innovative thinking
- Provide security engineering capabilities by designing and building solutions to help mitigate cybersecurity risks
- Support Information Security operations through managing and operating security tools and services.
- Perform project leadership tasks on select security projects
- Provide architectural oversight and direction for enterprise-wide security technology for select projects
- Provide enforcement of security policies, standards, and procedures as well as direct improvements to these as needed
- Research emerging technologies and maintain awareness of current security risks in support of security enhancement and development efforts
- Perform risk assessments of security controls in a complex, heterogeneous enterprise computing environment to ensure appropriate defense-in-depth
Characteristics, skills, and experience to be successful in this role:
- Bachelor's degree (B.S.) in computer science or related field, or Bachelor's degree (B.A.) and equivalent work experience
- 3+ years’ experience in the field of information security in at least three of the following areas: Endpoint Protection, security engineering, incident handling, penetration testing, intrusion detection, firewall access control technologies, risk management, vulnerability management, identity management, Windows or Unix security, Cloud Security, encryption technologies, or endpoint security controls
- 5+ years in the area of information technology in three of the following areas: systems engineering, networking, applications engineering, security, databases, storage, client-side technologies, or systems' administration
- Excellent analytical skills, organizational skills, ingenuity and the ability to work as part of a team
- Experience with developing and implementing cybersecurity plans
- Excellent communication skills with a track record of partnering with a diverse set of business units to achieve success
- Advanced analysis and decision-making skills to facilitate resolution of complex issues, and to promote and evangelize an effective controls environment across the enterprise
- Solid foundation of knowledge around application, network and endpoint security
- Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism
- Proven project management and organizational skills, specifically managing multiple concurrent projects
- Experience with Linux, Windows, and Mac OS operating systems
- Experience with traditional and cloud infrastructure environments
by via developer jobs - Stack Overflow
No comments:
Post a Comment