Candidate will work as a member of the Corporate Security Team and assist in various day to day operational activities such as: Drive customer's Corporate Security Program based on the NIST CSF – Identify, Detect, Protect, Respond and Recover.Develops, publishes, and maintains a comprehensive organization-wide information privacy and security plans, policies, procedures, and guidelines.Function as primary liaison with auditors, internal teams and vendors and be the resident expert on systems and services in use for PCI compliance and reportingResponsible for managing all aspects of the Vulnerability Risk Management Program including vulnerability identification, analysis, remediation coordination and reporting.Lead the development, implementation, and maintenance of security policies, standards, and guidelines.Identify and Monitor Customer's Corporate Networks to determine if there have been any attacks. Analyze network traffic to identify anomalies and test information security controls for weaknesses.Design and implement safeguards to protect the system with the help of network engineers and other members of the Technology Services team.Respond to threats by taking mitigating actions to contain the activity and minimize damage. Participate in risk assessments and breach readiness exercises for incident management.Facilitate forensics analysis to determine the source of the threat. Document lessons learned as well as identify process improvements.Communicate security issues to management via reports, dashboards. Provide weekly metrics on overall security posture.Research emerging threats and work with the Security Operations Center (SOC).Drive the Third party vendor security evaluation.Participate in the security toll-gates on SSDLC projects.Implement innovative solutions to scale the program with emphasis on automation where applicable. Qualifications Basic Qualifications: Bachelor's Degree in Business, Computer Science or in a STEM major (Science, Technology, Engineering, or Math).Minimum of 8 years of experience in Information SecurityExperience in at least one full lifecycle supporting PCI compliance is a must haveExperience in managing and maintaining a vulnerability management program using Qualys is a must haveExperience in developing content in Splunk – searches, alerts (including POC and tuning), dashboards, Apps.Experience of Security Incident and Event Management (SIEM) tools (Splunk) – ingesting data (Forwarders, HTTP Event Collectors, add-ons), troubleshooting Splunk Installation.Experience in Endpoint security (EDR) – Detection and Response. Help create policies and SOP for Response workflow. Experience in Cortex XDR preferred. Experience in Security evaluation of third-party tools. Experience in Email Security and running phishing campaignExperience in Incident ManagementExperience in system and network security.Experience in Network Penetration testing. Knowledge of software development, computer networks and Internet threat activity.Programming experience in python, perl and HTML/JSPrevious enterprise or platform/cloud vulnerability management experience and Cloud Security is a plusExcellent written and verbal communication skills, including experience engaging with executive and technical audiences.Must be able to work in a fast paced, high profile environment.
Job Title
Sr Information Security Engineer