IT Security Engineer - Expert In Recruitment Solutions
El Segundo, CA 90245
About the Job
MUST HAVES:
QUESTIONS THAT NEED TO BE ANSWERED BY CANDIDATE: Submission summaries need to address the "Must Haves”
JOB DESCRIPTION: In this role, you will help strengthen the organization's internal and cloud security framework. Responsibilities include participating in incident response, supporting business continuity and disaster recovery planning, conducting vulnerability assessments, and ensuring compliance with data security policies and standards such as ISO 27001:2022, ISO 27017:2015, ISO 22301, as well as meeting client audit requirements.
QUALIFICATIONS:
RESPONSIBILITIES:
- Primary experience should be a Professional Services industry- Financial Services background.
- Good employment duration.
- Must hold at least one current security certification.
- Must have a college degree.
- Hands-on expertise w/Azure and M E5
- Azure Compliance Manager
- AWS
- Sentinel
- Working experience with regulatory compliance frameworks such as NIST, ISO 27001, PCI DSS, GDPR, and HIPAA.
- Powershell
- KQL
- DLP experience with Netskope or similar tool
- Experience with CASB solutions, preferably Netskope
QUESTIONS THAT NEED TO BE ANSWERED BY CANDIDATE: Submission summaries need to address the "Must Haves”
JOB DESCRIPTION: In this role, you will help strengthen the organization's internal and cloud security framework. Responsibilities include participating in incident response, supporting business continuity and disaster recovery planning, conducting vulnerability assessments, and ensuring compliance with data security policies and standards such as ISO 27001:2022, ISO 27017:2015, ISO 22301, as well as meeting client audit requirements.
QUALIFICATIONS:
- Bachelor's degree in Computer Science or a related field, or a minimum of 5 years of applicable experience.
- In-depth knowledge of Azure, AWS, Microsoft E5, Sentinel, Defender for Endpoint, and various other security technologies.
- Strong expertise in network security and monitoring practices.
- Relevant security certifications (CISSP, CISM, CISA, GIAC, CCSP, OSCP, CEH, etc.) are required.
- Proficient in automation scripting using Python, Bash, and PowerShell.
- Experience in designing security architectures across different deployment models.
- Familiarity with enterprise security solutions and security protocols.
- Knowledge of regulatory compliance and information security management frameworks (NIST, ISO 27001, PCI DSS, GDPR, HIPAA, etc.).
- Understanding of security frameworks such as MITRE Telecommunication&CK and CIS 20.
- Experience with security considerations in DevOps and CI/CD pipelines, including container orchestration security.
RESPONSIBILITIES:
- Provide round-the-clock support for security incidents, ensuring prompt escalation and resolution.
- Mentor junior team members in the use of security tools, report generation, and problem-solving, while facilitating cross-training opportunities within the team.
- Document and escalate unresolved network security issues to ensure timely attention.
- Develop and maintain thorough documentation of security processes and systems.
- Exhibit extensive knowledge of both on-premises and cloud environments, with a focus on Azure, AWS, and Microsoft E5 platforms.
- Improve visibility and detection capabilities within fully managed Azure and AWS environments.
- Perform penetration testing and identify security gaps, providing recommendations for remediation.
- Assist in the design, development, implementation, and troubleshooting of various information systems and cybersecurity software.
- Automate security testing and auditing processes to prevent regressions and identify issues prior to production deployment.
- Offer expertise in systems, networks, encryption, authentication, and governance.
- Collect reports, metrics, and key performance indicators to assess and validate the effectiveness of current security controls for team evaluation.
- Engage in activities and create materials aimed at raising security awareness throughout the organization.
- Oversee the management of Active Directory, Privileged Identity Management, Local Administrator Password Solution, and associated privilege management technologies.
- Work in partnership with leadership to implement the Zero Trust security model and strengthen CIS standards.
- Lead initiatives for Business Continuity and Disaster Recovery, collaborating closely with the CIO, CISO, and Director of Enterprise Architecture and Service Delivery to test and enhance BC/DR strategies.
- Be available on-call for security incidents, working alongside vendors and the Service Delivery team to address and mitigate threats.
- Proactively evaluate security controls to identify vulnerabilities that could be exploited by malicious actors, and recommend remediation strategies to address security gaps.
- Ensure the operational efficiency and health of all endpoint security agents.
- Maintain up-to-date security architecture diagrams and actively participate in cybersecurity initiatives and projects.
Source : Expert In Recruitment Solutions
