Senior Information Security Engineer

Information Technology Santa Rosa, California


Description

Position at Jackson Family Wines

POSITION SUMMARY:

This position is a senior-level technical expert in all security domains who will partner with Information Technology (IT) leadership, staff and multiple business areas to define, deliver and support security standards, best practices, and systems, necessary to ensure the protection and confidentiality of informational assets.

 

This position must possess strong technical knowledge of information systems, Identity & Access Management architectural and administrative concepts, IT security practices and technologies, and the demonstrated ability to design, implement, operate, support, and improve relevant security controls. This position must also have a keen ability to review, respond and remediate security incidents in a timely manner. This position will also be responsible for creating scope, requirements documents, design diagrams, system documentation, test scenarios and cross-team training.
 

ESSENTIAL FUNCTIONS/DUTIES:
 

  • Align with and support the execution of the Information Security Program vision and strategy
  • Lead teams and provide technical direction to vendors and cross-functional team members
  • Manage and aid in the implementation, maintenance, and monitoring of the information security program in-scope operational areas such as: gap analysis, risk assessment, third party assessments, procedure/specification development, and execution of recurring procedures
  • Identify, analyze, communicate, and develop remediation recommendations of information security vulnerabilities
  • Facilitate and assist with the incident response process including the use of forensic techniques, tools, and procedures
  • Manage projects related to information security
  • Serve as information security subject matter expert, engineer, and trusted advisor; provide design requirements for systems and processes and consulting services as required
  • Understand current and emerging security threats and provide feedback on ways to improve the enterprise security architecture to mitigate such threats
  • Create technology solutions that are highly reliable, performance tuned and aligned with business needs
  • Stay abreast of new security technologies and methods for integration into the enterprise security architecture design when appropriate
  • Meet with project teams and subject matter experts to develop system designs and project plans that include the appropriate security controls and meet security standards
  • Lead medium and large, complex enterprise-wide projects
  • Build partnerships with customers, peers and stakeholders, working closely with them to share and influence the design of acceptable solutions
  • Drive innovation cross-functionally with customers, peers and vendors to improve security and enable business goals
  • Evaluates technology for its application in our business and evangelizes the use of best practices and technologies to secure cross functional business process
  • Continuously collect feedback from business partners on the effectiveness of security controls and adapts those controls as needed to optimize associated business systems and architectures
  • Responsible for overall product quality; formulates test strategies, plans, scripts and performs detailed testing for complex use cases to ensure adequate protection and optimal efficiency of associated business systems and processes

 

REPORTING TO THIS POSITION: 
 

  • Director, Information Security

 

JOB REQUIREMENTS:

Essential Skills, Experience, and Education

 

  • Bachelor’s degree in Computer Science or related field or equivalent work experience
  • 5+ years of information security experience; or 9 years equivalent experience.
  • Advanced understanding of security concepts related to applications, network, operating system, integration solutions and core infrastructure
  • Advanced networking skills are required including WAN, Wireless, Firewall, VPN, Proxy and Intrusion Detection/Prevention systems
  • Experience designing, implementing, administering, and maintaining the use of vulnerability scanning, Endpoint Protection, Data Loss Prevention, Network Access Control, Single Sign-On, Identity & Access Management and Encryption technologies
  • Ability to meet established deadlines; must be a self-starter who can work effectively both on your own and as a member of a team
  • Strong project management skills and demonstrated ability to make independent, educated decisions when called to
  • Understanding of emerging technologies in I.T. such as a Cloud Platforms, SD-WAN, Mobile Device Management, Operational Technology, Internet of Things, and their associated security risks
  • Strong, proven problem-solving skills and ability to identify, analyze, and resolve problems, driving solutions through to completion

 

JOB REQUIREMENTS:

Essential Skills, Experience, and Education (continued)

 

  • Must be action and results oriented, with excellent communication and presentation skills, and possess the ability to present ideas in a collaborative team setting and in a user-friendly language
  • Must have a firm grasp of concepts and technology across all IT areas to be able to spot gaps and develop appropriate controls
  • Must be able to react quickly and efficiently to issues affecting business operations
  • Strong facilitation skills and a clear ability to build strong relationships with business partners and vendors
  • Working knowledge of common information technology management frameworks such as ISO/IEC 27001, ITIL, COBIT, and NIST
  • Must consent to and successfully pass a background check

 

PREFERED EXPERIENCE:

Essential Skills, Experience, and Education

 

  • Master’s degree in Computer Sciences or related field
  • SSCP, CCSP, GSEC, CRISC certifications
  • Experience with the following NetIQ/Micro Focus products: Access Manager, Advanced Authentication, and Identity Manager
  • Experience with the following Check Point products: Firewall & VPN (R80+), Sandblast/Harmony Endpoint Protection, Dome9, CloudGuard SaaS (Email and Office, Sandblast/Harmony Mobile Endpoint) and associated features
  • Experience with Elastic/ELK stack in a SIEM use case
  • Experience with Forescout CouterACT/eyesight

This job description reflects management’s assignment of essential functions; it does not prescribe or restrict the tasks that may be assigned.  Critical features of this job are described in the headings above.  They may be subject to change at any time due to reasonable accommodation or other reasons.  (Reasonable accommodation is defined as any modification or adjustment to a job or work environment that permits a qualified applicant or employee with a disability to perform the essential functions of the job.)