Description

The Opportunity:
In this role, you will work to secure Qualifacts applications and infrastructure from external and internal threats; implement third-party tools to assist in detection, prevention, and analysis of security threats. S/he will be responsible for installation, administration, and monitoring of security products to enable vulnerability detection, intrusion detection, firewalls, identity and access management, security event monitoring, incident management, end-point protection and more. This position is responsible for maintaining threat detection programs and is a direct liaison with our third-party Security Operations Center (SOC). This candidate must have a strong understanding of operating systems, networking, web applications, and databases in addition to security specific technologies. Candidates should have familiarity with host and network security hardening, networking protocols, common intrusion techniques, and risk management concepts.

Your Responsibilities:

• Maintains existing security tools, including, but not limited to Firewalls, Security Information and Event Management (SIEM), vulnerability scanning tools, e-mail gateways/spam filters, File Integrity Monitors (FIM), Identity and Access Management, and anti-virus/malware. Evaluate new products and strategies, and make recommendations for improvements where possible.
• Monitors system logs and alerts and provide first level internal response in determining the severity of alerts and escalating them to management (in conjunction with third party Security Operations Center (SOC)
• Works as part of an Incident Response Team to respond to, assess, and remediate security incidents as needed.
• Instrumental in involvement in complex IT security projects in designing or maintaining a vulnerability management program, by working closely with other operational teams.
• Maintains network configuration and administration including VLANs, ACLs, switches, routers, ISPs and firewalls (i.e. Cisco, Fortigate, etc.)
• Ensuring new emerging systems are being deployed in accordance with current recommended Information Security best practices
• Conducting and coordinating tests across a variety of enterprise platforms to guarantee proper stability of systems
• Serving as a technical point of contact for assessing and analyzing all enterprise client systems, hardware, and software security issues
• Providing the highest level of back-end support by identifying, prioritizing, and determining a solution for reported customer issues and problems.

Skills and Experience You Need:

• Bachelor's Degree Required in Computer Science, MIS or Information Systems or Information Security related designations
• 5+ years of security related experience with implementing and managing various security monitoring and threat detection.
• 3+ years of experience administering and applying security controls in production, test and development environments in a complex, heterogeneous, cross-platform environment
• 3+ years of combined IT and application, operating system, or database security work
• 2+ years experience in monitoring and securing of cloud environments such as AWS
• Strong knowledge and management of the following is required: Internal/External vulnerability scanning, Open Source Security (OSS) management, penetration testing, IT auditing, firewalls (e.g.) Fortigate, IDS/IPS, DNS, anti-virus, VLAN, VPN, SIEM, etc.
• Knowledge and management of Password Management Platforms, Encryption Platforms, Secure Monitoring/Reporting and SSO/Multi-Factor platforms
• Proficient securely managing Microsoft Windows, Windows Server, Redhat, CentOS, Ubuntu
• Knowledge of virtualization technologies such as VMware, KVM, or similar Hypervisors.
• Strong knowledge in the following web technologies: OpenStack, Openshift and other Cloud computing platforms/microservices
• Experience in securing cloud environments (e.g. AWS)
• Experience with implementing and maintaining Identity & Access Management (IAM) solutions
• Experience Security Incident Response Handling and Incident Forensic Analysis

 

Skills and Experience We Prefer You Have:

• Masters Degree Required in Computer Science, MIS or Information Systems or Information Security related designations
  2+ years experience with web technologies such as OpenStack, Openshift, or other Cloud computing platforms and microservices
• Experience in maintaining an Active Directory environment of 500+ users, 800+ computers
• Office 365 (E3 or E5 Suite)
• Experience with Bomgar remote access management for privileges Admin access and monitoring.
• Experience with PingID Identity and Access Management (IAM) solutions
• Ability to identify opportunities for automation of security solutions
• Ability to take part in an on-call rotation for after-hours support.

Licenses/Certifications (Preferred)

• Security+,
• Network+
• Linux+
• Certified Information Systems Security Professional (CISSP)
• RedHat Certified Systems Administrator (RHCSA)/RedHat Certified Engineer (RHCE)
• Certified Ethical Hacker (CEH)
• Licensed Penetration Tester (LPT)