HBR Consulting LLC

  • Information Security Engineer

    Posted Date 3 months ago(9/26/2018 5:20 PM)
    Job ID
    2018-1258
    # of Openings
    1
    Location : Location
    US-NY-New York
    Practice Group
    Managed Technology Services
  • Overview

    The Information Security Operations Engineer will analyze risks and help operate the enterprise security program. The position requires strong technical skills, allowing for execution of security processes with minimal guidance and helping to achieve operational efficiencies therein. This individual will assist with reviewing existing tools, applications and processes to help strengthen and optimize current capabilities, as well as identifying any gaps or technical solutions to further enhance the team’s effectiveness.

    Responsibilities

    • Compliance and governance: help achieve compliance, identify compliance initiatives, and author and promote appropriate security policies.
    • Lead, analyze, and review security events for anomalous activity, collaborate with respective peer groups to take appropriate action to safeguard company information assets against current and foreseen threats.
    • Lead the exploration of practical security solutions to address emerging threats and compliance requirements, including design and implementation of recommended solutions.
    • Develop and implement security programs: manage and execute project deliverables; communicate to affected stakeholders including departments within the company; develop program procedures including guidelines and flow diagrams to be implemented on an ongoing basis; and develop tools or metrics that allow for the measurement of successful program implementation.
    • Maintain communication with peers throughout the organization and security contacts including Business Units and subsidiary locations; survey clients to determine appropriate communication methods; deliver solutions to help raise security awareness; and develop and disseminate information regarding security controls and newly identified risks.
    • Carry out management responsibilities in accordance with the organization’s policies, procedures, and applicable laws. Responsibilities include interviewing, hiring, and training employees; planning, assigning, and directing work; appraising performance; rewarding and disciplining employees; and addressing complaints and resolving problems.
    • Manage and encourage new ideas from staff to foster improvements through innovations.
    • Empower the staff to be accountable and responsible for their own actions and decisions.
    • Will manage security specific tools (SIEM, VM tools, Fortinet Firewalls, Qualys, etc)
    • Additional duties as assigned.

    Qualifications

    • BS Engineering/Computer Science or equivalent experience required
    • 5+ years of IT security experience
    • Licensing/certification desired (at least one of the following): CISSP, CISM, SANS, GIAC (or related), ethical hacking/penetration tester certification, and/or security risk assessment certification.
    • Strong understanding of compliance and governance initiatives.
    • Ability to analyze security events for anomalous activity; ability to identify emerging security threats.
    • Strong understanding of cryptography, certificates and HSMs – ability to manage certificates, processes and troubleshoot
    • Ability to develop and implement security programs.
    • Proven ability to monitor security systems for threats; ability to conduct vulnerability assessments, threat analysis, and reporting.
    • Installation/troubleshooting in web-based environments.
    • Strong skills in setting, communicating, implementing, and achieving business objectives and goals through the direct management of others.
    • Strong organization/project planning, time management, and change management skills across multiple functional groups and departments, and strong delegation skills involving prioritizing and reprioritizing projects and managing projects of various size and complexity.
    • Strong problem-solving experience involving leading teams in identifying, researching, and coordinating the resources necessary to effectively troubleshoot/diagnose complex project issues; prior success extracting/translating findings into alternatives/solutions; and identifying risks/impacts and schedule adjustments to facilitate management decision-making.
    • Strong communication (verbal and written) and customer service skills. Strong interpersonal, communication, and presentation skills applicable to a wide audience including senior and executive management, customers, etc., including diction/terminology and presenting information in a concise and effective manner to clients, management, and various departments using assorted communication mediums.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed