Cyber Security Engineer
Description
- Develop a deep working knowledge of CARFAX’s network architecture, customized system functions and dependencies, and how security infrastructure, controls, and processes protect critical data and assets.
- Design, build, and assist with solutions and core security projects related to network architecture.
- Perform threat hunting, event analysis, and investigations tailored to our threat environment.
- Operate and maintain vulnerability scanning tools to identify and remediate security weaknesses.
- Serve as a subject matter expert and provide expertise on topics related to network security.
- Monitor the general security landscape and research current trends in the industry to optimize and align Information Security processes to industry best practices.
- Conduct detailed assessments of network security systems and access rules to ensure they are appropriate, secure, and defensible based on least privilege.
- Enhance network security posture to better protect against attacks and detect new threat vectors.
- Participate in supporting a diverse, distributed, and agile environment.
- Self-organize and prioritize activities independently.
- Create and maintain documentation and perform status reporting.
- Build working relationships with business and operational units across the organization.
- Bachelor of Science degree in Computer Science, Information Assurance, or a related field with a minimum of 3-5 years hands on experience in a security engineering role.
- Preference for CISSP, GIAC, CCNA Security, Security +, CCNP Security, PCNSE certifications.
- Understanding of OSI stack – L2, L3, TCP, UDP, common ports.
- Experience with network protocols (TCP/IP, host, and network-based access controls, routing and switching), DNS/DNSSEC.
- Solid understanding of transport layer security (TLS)
- Working knowledge of security tools/languages including NMAP, Nessus, Kali Linux, Python, etc.
- In-depth experience with Incident Response, digital forensics, and knowledge of Windows functionality. Ability to perform forensic analysis with common security analysis tools.
- Experience with cloud technologies including SaaS, PaaS, IaaS, FaaS.
- Knowledge of Cisco FW, Cisco ISE, Palo Alto, AWS network security, and ELK Stack
- Understanding of Group Policy and Local Security Policy
- Familiarity with Backup and Disaster Recovery best practices
- Windows Server permissions (Global Groups, Universal Groups, Domain Local Groups)
- Base level understanding of Virtualization
- Knowledge of security operations concepts such as perimeter defense, data loss protection, insider threat, kill-chain analysis, risk assessment, common security frameworks, Multi-Factor Authentication solutions (Okta, Auth0) and VPN architecture.
- Experience with conducting firewall reviews, including firewall rule audits and risk assessments.
- System hardening experience utilizing CIS benchmarks and CIS-CAT tools.
- Working knowledge with automation and monitoring platforms (Chef, New Relic, Zabbix, etc.)
- Experience with VMware and Windows/Linux based systems
- Competitive compensation, benefits and generous time-off policies
- 4-Day summer work weeks and a winter holiday break
- 401(k) / DCPP matching
- Annual bonus program
- Casual, dog-friendly, and innovative office spaces
- 10X Virginia Business Best Places to Work
- 9X Washingtonian Great Places to Work
- 9X Washington Post Top Workplace
- St. Louis Post-Dispatch Best Places to Work
About CARFAX
CARFAX, part of S&P Global Mobility, helps millions of people every day confidently shop, buy, service and sell used cars with innovative solutions powered by CARFAX vehicle history information. The expert in vehicle history since 1984, CARFAX provides exclusive services like CARFAX Used Car Listings, CARFAX Car Care, CARFAX History-Based Value and the flagship CARFAX® Vehicle History Report™ to consumers and the automotive industry. CARFAX owns the world’s largest vehicle history database and is nationally recognized as a top workplace by The Washington Post and Glassdoor.com. Shop, Buy, Service, Sell – Show me the CARFAX™. S&P Global Mobility is a division of S&P Global (NYSE: SPGI). S&P Global is the world’s foremost provider of credit ratings, benchmarks, analytics and workflow solutions in the global capital, commodity and automotive markets.
CARFAX is an Affirmative Action/Equal Opportunity Employer. It is the policy of CARFAX to provide equal employment opportunity to all persons regardless of race, color, sex, pregnancy, religion, national origin, age, ancestry, citizenship status, veteran status, military status, disability or handicap, sexual orientation, genetic information or any other status protected by federal, state or local law. In addition, CARFAX will provide reasonable accommodations for qualified individuals with disabilities. We maintain a drug-free workplace. We are a participant in E-Verify.