Summary
A highly prestigious national regulatory firm is looking to bring on an Information Security Engineer to the play a key role in improving Network Perimeter and Internal Systems Security, policies, procedures, and system compliance both in the AWS Cloud and on-premise networks. This Security Engineer will be responsible for monitoring threat intelligence sources and adjusting as well as advising external vendors, penetration testers and Managed Services Security Providers (MSSP's) on providing tuned services for the MSRB.
Core Responsibilities
- Monitors AWS security services for additions and changes to ensure the Organization is maximizing value from AWS
- Performs and leads maintenance activities for the Information Security Management Program
- Designs, implements, maintains, documents and reports on security requirements and standards across the Organization network, server, and desktop infrastructure
- Monitors Security Hub in AWS for compliance to CIS standards and AWS best practices and initiates corrective actions
- Escalation point for analysts researching anomalies discovered because of daily operational real-time monitoring and analysis of internal security events from, but not limited to events from Security Information Monitoring tools, network and host-based intrusion detection systems, applications, and databases
- Monitors cybersecurity intelligence through a variety of feeds including, but not limited to, SecureWorks, FS-ISAC, AWS, equipment vendors, dark web, security feeds and blogs
Education/Qualifications
- Five years of experience in an IT support role, maintaining computer hardware/network support
- Knowledge of malware analysis technologies and standard processes and common commercial off the shelf Malware Tools. Must have experience working with Windows 10 and Windows 2012/2016 server operating systems and cloud security knowledge
- AWS
- Experience with remote connectivity and supporting users connecting to the office, network switching, firewall security, internal/external DNS and SMTP is preferred