Security Engineer - Ferretti Search
Charlotte, NC 28202
About the Job
As a Security Engineer for our client, you will play a role in safeguarding our digital fortress. You will leverage your expertise in security best practices, network security principles, and emerging threats to design, deploy, and maintain robust security solutions. Your responsibilities will require a wide range of activities, from meticulously configuring firewalls and intrusion detection systems to identifying and patching vulnerabilities in our systems. You will partner with other IT teams, collaborating to ensure the security of our data and systems across the entire organization.
Responsibilities:
- Evaluate existing security tools and identify areas for improvement. Develop a roadmap to enhance DLP capabilities, close security gaps, and drive innovation.
- Design and implement mechanisms to detect sensitive data and security incidents, ensuring compliance with security standards and procedures.
- Share your knowledge and expertise by mentoring and developing team members to become DLP specialists.
- Evaluate and strengthen security tools and instrumentation to prevent cyberattacks and protect against potential exploits.
- Collaborate with information system custodians to understand their security needs and implement best practices aligned with our information security policy.
- Assist with monitoring and auditing information system activities to ensure security policy compliance and provide regular reports to management.
- Work with stakeholders across the organization to deliver DLP solutions that effectively support their business requirements.
- Conduct security risk assessments on new and existing systems, identify vulnerabilities, and recommend appropriate security countermeasures.
- Coordinate activities with loss prevention teams, and interact with legal and law enforcement as needed.
Requirements:
- Possess in-depth knowledge of DLP capabilities, including data discovery, tagging, classification, segregation, and loss prevention.
- Understand DLP functionalities for data at rest, in use, and in transit.
- Have practical experience with various DLP tools, including Symantec/McAfee DLP, Tanium, Proofpoint/Mimecast/Netskope, Google Workspace, CASB, and data discovery/management solutions.
- Proficient in at least one operating system (Windows, Linux, AIX, macOS, iSeries) and security concepts.
- Experience with automation and orchestration for managing server and workstation infrastructure efficiently.
- Comfortable with at least one scripting/programming language (PowerShell, shell scripting, Python, etc.).
- Have experience integrating disparate systems using APIs.
- Understand DLP integration with network platforms like firewalls, UTMs, and proxies.
- Knowledgeable about network segmentation and security zones for data protection based on classification.
- Possess a good understanding of authentication protocols like Kerberos, SAML, and OAuth.
- Be willing to share your knowledge and assist colleagues in understanding technical and security topics.
We're also looking for someone with:
- A strong understanding of information security standards and best practices.
- Working knowledge of networking protocols, web technologies, and cloud computing.
- The ability to analyze security data and identify potential compliance issues.
- Excellent problem-solving skills and the ability to understand complex data flows for security assessment.
- A team player with a positive attitude who can build strong working relationships.
- The ability to work independently and manage multiple tasks effectively.
- Innovation, creativity, and a strong sense of urgency.
- Exceptional communication skills to explain complex security concepts to diverse audiences.
Source : Ferretti Search