Sr Lead IT Systems Security Engineer

The Senior Lead IT Systems Security Engineer is a critical role within our organization, responsible for overseeing and enhancing the security of our IT systems. This position requires a highly skilled and experienced professional who can design, implement, and manage comprehensive security solutions to protect our infrastructure. The ideal candidate will have a deep understanding of security principles, technologies, and best practices, and will be able to lead a team of security engineers to ensure the integrity, confidentiality, and availability of our systems.

This is a Work From Home position available from any US-based location. You must be a US Citizen or Permanent Resident/Green Card for consideration.

Security Architecture and Design: Develop and implement robust security architectures for IT systems, ensuring compliance with industry standards and best practices. This includes designing security solutions for cloud environments, virtualization platforms, and on-premises infrastructure.
Incident Response and Management: Lead incident response efforts for security incidents, including investigation, containment, remediation, and reporting. Develop and maintain incident response plans and procedures to ensure timely and effective handling of security events.
Security Policy Development: Create and enforce security policies and procedures to protect the organization's IT assets. Ensure that security policies are up-to-date and aligned with regulatory requirements and industry standards.
Risk Assessment and Management: Conduct regular risk assessments to identify and mitigate potential security threats. Develop and implement risk management strategies to protect the organization's IT systems from vulnerabilities and attacks.
Security Monitoring and Analysis: Design and maintain security monitoring systems to detect and respond to anomalies and potential threats. Utilize advanced data analytics techniques to analyze security threats and develop data-driven security strategies.
Team Leadership and Development: Lead and mentor a team of security engineers, providing guidance and support to ensure the team's success. Foster a culture of continuous learning and improvement within the security team.
Collaboration and Communication: Work closely with other departments, including IT, compliance, and business units, to ensure that security measures are integrated into all aspects of the organization's operations. Communicate security risks and strategies to senior management and other stakeholders.
Security Technology Management: Oversee the deployment and management of security technologies, including firewalls, intrusion detection/prevention systems, SIEM, and endpoint protection solutions. Ensure that security technologies are properly configured and maintained to provide maximum protection.

- 8+ years security engineering experience in managed services or Internet settings.Bachelors or Masters Degree in Computer Science or comparable field, or comparable experience.
- Strong knowledge of Unix-based operating systems (Linux, Solaris). Experience with virtualization technologies (VMWare, Red Hat OpenStack).
- Expert knowledge and troubleshooting of IP networking and protocols. Experience with Ipv6.
- Programming/scripting abilities in Perl, Unix/Linux shell, PHP, Python, Java or similar programming languages.
- Extensive knowledge of web application security, browser security models, and application security vulnerabilities such as OWASP Top Ten.
- Mastery of security principles including confidentiality and integrity of data, authentication and authorization, and cryptographic protocols.
- Deep understanding of network attacks, DDoS, malware, phishing, email security, encryption, authentication, log and forensic analysis, IP and device reputation, and security policies.
- Hands-on expertise operating managed security technologies: Firewalls (Cisco ASA, Check Point), IPS (Cisco), File Integrity Monitoring (Tripwire, Trend Micro Deep Security), SIEM, Web Application Firewalls (Imperva), Next-Generation Firewalls (Palo Alto Networks, Cisco FTD), security management tools.
- Understanding of REST API design concepts and standards.
- Experience with database technologies (MySQL/MariaDB, MSSQL, Postgres, NoSQL).
- Experience in creating tools to automate recurring tasks.
- Experience with log collection and analysis tools (Graylog, Splunk) .
- Ability to review logs and other forensic data from a security standpoint and identify anomalies.
- Experience with regulatory compliance audits, Business Continuity and Disaster Recovery efforts, etc.

Desired and Special Skills:

- Strong knowledge and development experience in Java, JavaScript, Perl, PHP and Python.
- Mobile application security expertise.