Report this Job
Security Engineer Role
Essential Functions:
Review and identify any gap in Paloalto Firewall rules, security policy and Implementation.
Assists in the planning and deployment of the Company's cloud information security strategies.
Implement security controls and solutions in cloud environments (Azure) to protect against threats, including control tower, Guard rails, service control policies, identity and access management, vpc flow logs and subnet security, data encryption, web application firewall and application security.
Manage Infrastructure and application security monitoring tools to detect and respond to security incidents in real-time.
Conduct regular vulnerability assessments and penetration testing to identify weaknesses in the infrastructure and applications.
Develops and maintain an incident response plan, and coordinate responses to security incidents, ensuring timely resolution.
Ensure compliance with industry specific security standards (e.g. SOX, PCI) and assist in audits and compliance assessments.
Create and maintain documentation related to security policies, procedures, and configurations.
Maintain training and awareness programs to educate employees and cloud and devops teams on security best practices.
Uses penetration testing tools to perform regular vulnerability assessments of internal, DMZ, and external devices, and Cloud resources.
Work with Infrastructure team to Prioritize risk and guidance for quick remediation.
Designs, tests, and implements security protection measures intended to protect cloud-based applications and data.
Coordinates assigned security projects during implementation phase and ensures timely completion.
Assists in the day-to-day security team functions (i.e., response, monitoring, and support)
Communicate and relate complex business requirements and associated risks to technology.
Collaborate with cross functional teams, including DevOps, development, and IT, to integrate security into software development and deployment lifecycle using SASE framework.
Researches, evaluates, designs, tests, recommends, and plans implementation of new or improved information security software or devices.
Reviews computer logs and messages to identify and report on possible violations of security.
Assists in development of disaster or emergency recovery procedures for information systems and computer environment.
Provides leadership in understanding and responding to security audit failures reported by internal and external auditing.
Performs other related duties and projects as business needs require at direction of management.
Education and Experience:
Bachelor's degree in Computer Science, Computer Engineering or related Information Technology field.
Minimum three (3) years of experience in information security or information technology.
Proven experience in firewall security, cloud security and devsecops, including best practices, risk assessment and compliance requirements.
Experience with security tools and technologies such as web application firewall management, and evaluate vulnerability associated risk.
Working experience with below technologies are highly desirable but not required.
Paloalto Firewall
Crowdstrike EDR, IDP, Filevantage
ArcticWolf
Delinea
Checkpoint Harmoney
Automox
Arnold Melgar
Irvine Technology Corporation
Phone: 866.322.4482
