Position Purpose: The purpose of this role is to augment the firm’s Security Engineering team through implementing security tools, policies, and processes. This is a role that requires hands-on cyber security technical expertise, specifically with respect to network engineering. The person in this position is responsible for a broad range of tasks, including the day-to-day administration of information security tools and devices, as well as support for those security appliances and tools.
This position will interact closely with vendors and service providers, with personnel from various IT departments including Application Security, IT Security Operations, IT GRC/Corporate Compliance, DevOps, and IAM and with business units. This person must also ensure that their projects, day-to-day responsibilities, and tight deadlines are met, given changing business conditions and a worldwide presence.
Responsibilities include but are not limited to:
Research, recommend, create POCs and implement information security solutions that identify and/or protect against potential threats, and respond to security violations.
Document implementation procedures for new products and technologies.
Architect network security solutions and technically lead their implementation from end to end.
Perform detailed analysis to identify network security impacts or considerations and translate into secure, viable technical solutions.
Support incident response process and participate/collaborate with SecOps team.
Ability to work with both technical and business teams for requirements gathering.
Work to continually improve the tools, processes, documentation, and systems utilized within the organization.
Ability to work both independently and with internal teams in a project-oriented environment.
Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised network security solutions and improved security policies, procedures, and processes
Strong team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT-business personnel.
Ability to adapt to fluctuating team priorities and organizational directions
Strong organization skills and an ability to multitask to meet multiple deadlines in short time frames
Bachelor’s degree in Information Systems, or equivalent experience
3-5+ years of IT experience with at least 1-2 of those years in a Network Security Engineering role; experience in the financial services industry is a plus
Experience with Threat Intelligence, EDR, Vulnerability Scanning, Secure Email Gateway
Advanced knowledge with Palo Altos (NGFW) and F5s, in addition to strong knowledge of network security industry standards and network security tools
Must be a problem solver and adept at assimilating new technologies.
Must be able to plan and implement system installations and upgrades with minimal impact to user base.
Must be able to identify any negative impact a change might have on system availability.
Must be able to communicate technical issues and concepts clearly, both verbally and in writing.
Ability to script in Powershell, Python, or other equivalent language
CEH, CCNP Security, GSEC, GCIA, SSCP, or equivalent certifications a plus