Description

As a member of the IT Team, the Security Engineer is responsible for supporting best-in-class security strategies to accomplish goals. The Security Engineer will monitor, advise, and act as liaison between functional and development teams and third-party providers, provide ongoing IT and business support, and is responsible for configuring, monitoring, and managing security systems and resources. This role will be responsible for providing, documenting, and presenting technical expertise regarding security risks and risk mitigation approaches.

 

Responsibilities Support the development and management of security systems, policies, procedures, practices, and standards. Provide tactical support and execution, focused on incident prevention, detection, and response. Assist with the evaluation of new security related technologies which may be used to replace, enhance or integrate with IT systems. Ensure policies and procedures are adhered to and take corrective action where non-conformities are identified. Support administration of endpoint security solution, intrusion detection systems, security monitoring and network security tools. Responsible for facilitating endpoint security, vulnerability assessments, intrusion detection, security and monitoring, and incident response company-wide. Investigate and respond to possible threats by analyzing results produced by security monitoring and vulnerability assessment tools. . Perform endpoint, application, and server malware remediation tasks including documentation and root cause analysis on security incidents. Research and apply better ways of mitigating security risks using emerging technologies and solutions while driving a secure approach to the development of solutions across the enterprise Communicate timely status updates (both verbal and written) to team members and management. Collaborate with business stakeholders, IT team members, and other key stakeholders to understand current and future business needs and translate them into secure solutions. Requirements Bachelor's degree (or equivalent) in Cybersecurity, Computer Science, Information Technology, or related field. 8 years’ experience working in information technology, information systems, or business systems, with at least 5 years of experience related to enterprise security. Security Certification and/or and prior experience in a global security team. Detailed understanding of attack vectors, current threats, and their remediation strategies. Detailed understanding of control frameworks and reference architectures such as NIST, MITRE, and Cyber Security kill chain. Proven experience with IT projects and deliverables. Deep level understanding of TCP/IP (Transmission Control Protocol/Internet Protocol) networking and the OSI (Open Systems Interconnection) 7-layer model. . Solid understanding of Windows, UNIX, Linux, Cloud-based systems, and network infrastructure. Experience with managing work using a service desk ticket system. Some travel will be required for the purpose of meeting with site personnel, Management, and other stakeholders. Some off hours work may be required. Qualifications Prior experience in aerospace, manufacturing, or a highly-regulated industry is a plus. Strong analytical, problem solving, and critical thinking skills with ‘attention to detail’. Excellent oral/written communications, organization, time management, teamwork, and interpersonal skills. Ability to multi-task in a dynamic, fast-paced environment. Demonstrate outstanding level of professionalism, including ability to exercise good judgment, discretion, tact, and diplomacy. Ability to work both independently (under consultative direction only) and as part of a team. Ability to make decisions with a strategic mindset.

#LI-Hybrid