Security Engineer

A minimum of 5 years of experience in a Security Engineer role or similar.
Bachelor’s degree in computer science (Computer Security/Information Security degree preferred), in lieu of a degree, additional experience will be considered.
Knowledge of Authentication, End Point Security, Network Security, Identity and Access Management solutions.
Knowledge of and experience with intrusion detection/prevention systems and SIEM software.
Experience analyzing network and host-based security events.
Familiarity with network security architectures, including DMZs, VPNs, and segmentation.
Strong understanding of information security principles and best practices.
Experience with incident and change management.
Knowledge of incident response life cycle and steps.
Knowledge of TCP/IP protocols, network analysis, and network/security applications.

Implementing, managing, and optimizing security functions related to perimeter and access security.
Providing support to security operation teams.
Plan, implement and manage Enterprise cybersecurity access control technologies including multi-factor authentication, single sign-on, radius, and TACACS.
Configure and manage EDR and/or XDR, host-based firewalls.
Manage public key infrastructure (PKI) systems.
Configure, manage and optimize network firewalls, network intrusion detection and prevention system (IDS/IPS), virtualized firewalls.
Implement and operate DMZs, web application firewalls, reverse and forward proxies.
Configure security logging, establish logging baselines for security events and assist in implementation of security event detection through SIEM.
SIEM Management, upgrade and patching.
Perform vulnerability remediation within established timeline.
Perform secure design reviews of new and existing systems and applications.
Develop security procedures for implementation of security controls based on NIST 800-53 Risk Management Framework.

Relevant certifications (e.g., CISA, CISSP, CRISC, F5, Cisco, Fortinet, Splunk) are a plus.