FULL_TIME

FEED

UNKNOWN

Working knowledge of application & infrastructure security solutions (Firewalls, Intrusion Detection/Prevention Systems, Network Security, Password Management, Data Encryption, Next Generation endpoint security suites, SPAM Filters, Proxy Filters, Active Directory, SIEM, MFA, MDM, EDR, and Access Control). Ability to effectively communicate both in writing and verbally Ability to multi-task; excellent organizational and planning skills required Must be self-directed with the ability to work with minimal oversight.

The Information Security Engineer will provide accurate and timely monitoring and reporting of systems and potential risks related to the company. This position will assist in the design and implementation of the company's cybersecurity solutions ensuring digital assets are protected from unauthorized access. Perform regular security audits of information systems and develop corrective action plans. Expected to maintain and update information security processes, procedures training programs, and documentation, while providing information security expertise to reduce risk and ensure appropriate levels of data confidentiality, integrity, and availability. Essential Duties and Responsibilities: Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Focus on preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to an organization's information systems and IT assets and intellectual property. Assist with the evaluation, development, implementation, monitoring, and maintenance of client information security policies, solutions, procedures, standards, and guidelines. Develop and oversee vulnerability management program. Administer and enhance an ongoing risk assessment program, provide recommendations for improved security design Daily administration of information security systems that includes firewalls, spam filtering, URL filtering, endpoint security, IPS, data governance, Identity management, syslog server infrastructure and other perimeter and endpoint security systems. Designing, testing, and implementing secure operating systems, networks, and databases. Conduct risk audits and assessments, providing recommendations for improved security design. Implement and oversee identity management systems to meet specific security needs and complex compliance standards. Work with the Security Operation Center to maintain rules and alerts within the SIEM as well as be an escalation point to said alerts. Evaluate and report on potential risks and threats to Information and data systems. Participate in threat hunting and work on remediation efforts. Support, maintain and ensure client policy alignment with NIST 2.0 Framework. Evaluate and improve information system and security controls related to applications, business processes, change control, data center operations, and incident management processes. Reviews existing security architecture, identify and analyze design gaps, and recommends security enhancements. Remains current on emerging security threats and design security architecture to mitigate. Ensures alignment between security architecture frameworks and standards and overall business strategy. Serves as an information security expert and trusted advisor to partners in IT and the business. Assist with the design of security architecture compliance on requirements, including but not limited to: Sarbanes-Oxley, payment card industry standards, HIPAA/HITECH, global data privacy requirements, as well as state and federal regulations. Manage content for the security awareness training program for employees and authorized users. Provide additional training when needed. Actively participate in defining security requirements for information technology projects, conduct and direct research into IT issues and products. Keen attention to detail with proven analytical, evaluative, and problem-solving abilities. Manage, support and administer Endpoint Security Products. Perform any other tasks/duties as assigned by management. Education Requirements and Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill and/or ability required. A two or four-year degree from an accredited university or college with course work in computer science, information security, management information systems, or a closely related field. Minimum 7+ years of experience of full-time information security related experience. Require/Preferred Experience with specific equipment/software/programs etc. Preferred Certified Information Systems Security Professional (CISSP) or Global Information Assurance Certification (GIAC). Ability to effectively communicate both in writing and verbally Ability to multi-task; excellent organizational and planning skills required Must be self-directed with the ability to work with minimal oversight. Working knowledge of application & infrastructure security solutions (Firewalls, Intrusion Detection/Prevention Systems, Network Security, Password Management, Data Encryption, Next Generation endpoint security suites, SPAM Filters, Proxy Filters, Active Directory, SIEM, MFA, MDM, EDR, and Access Control). Working knowledge of information security concepts, standards, and best practices. An understanding of the impact of emerging business and end-user technologies have on information security requirements and architecture. An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business. Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one. Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies. Certification such as GSEC, SSCP, CISM, CEH or CISSP are considered a strong advantage. Must be able to read documents in Standard English such as Standard Operating Procedures, maintenance schedules and operating manuals. Ability to work overtime as needed. Physical Environment and Requirements. While performing duties of the job, incumbent is occasionally required to stand; walk; sit; use hands to finger, handle or feel objects, tools or controls; reach with hands and arms; balance; talk and hear.

Macpower Digital Assets Edge LLC

IT Security Engineer

Access Control

Analysis Skills

Applications Security

Architectural Design

Auditing

Best Practices

Business Processes

Business Strategy

CISM - Certified Information Security Manager

CISSP - Certified Information Systems Security Professional

Change Control

Communication Skills

Computer Hacking

Computer Science

Computer Security

Content Management

Corrective Action

Cryptography

Detail Oriented

Develop and Maintain Customers

Documentation

Documentation Standards

Endpoint Security

English Language

Federal Laws and Regulations

Firewalls

GIAC - Global Information Assurance Certification

GSEC - GIAC Security Essentials Certification

HIPAA (Health Insurance Portability and Accountability Act)

Hunting

IT Requirements

Identity Data Management

Incident Management

Industry Standards

Information Systems/Technology IS/IT Administration

Information Technology & Information Systems

Information Technology/Systems Audit

Information/Data Security (InfoSec)

Intellectual Property (IP)

Internet Security

Intrusion Detection Systems

Intrusion Detection and Prevention (IDP)

Intrusion Prevention Systems

Management of Information Systems/Technology (MIS)

Manufacturing Data Management

Microsoft Active Directory

Multitasking

Needs Assessment

Network Operations Center

Network Security

Operating Systems

Organizational Skills

Password Security

Problem Solving Skills

Project/Program Management

Regulatory Compliance

Requirements Management

Research Skills

Risk Analysis

Risk Management

SSCP - Systems Security Certified Practitioner

Sarbanes-Oxley Act (SOX)

Security Architecture

Security Attacks

Security Design

Security Information and Event Management (SIEM)

Security System Design

Spam Filtering

Standard Operating Procedures (SOP)

State Laws and Regulations

Test Design

Time Management

Training Program

Training/Teaching

U.S. National Institute of Standards and Technology (NIST)

Writing Skills

Full Time Security Jobs in Central Islip, NY

Full Time Security Jobs in Central Islip, NY

Resume Resources

Get noticed by top employers!

Full Time Security Jobs in Central Islip, NY

IT Security Engineer Macpower Digital Assets Edge LLC

Resume Resources