Engineer, Security Job Description
Engineer, Security Duties & Responsibilities
To write an effective engineer, security job description, begin by listing detailed duties, responsibilities and expectations. We have included engineer, security job description templates that you can modify and use.
Sample responsibilities for this position include:
Engineer, Security Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Engineer, Security
List any licenses or certifications required by the position: CISSP, PKI, GIAC, ITIL, CE, OSCP, CCNP, MCSE, CEH, GSEC
Education for Engineer, Security
Typically a job would require a certain level of education.
Employers hiring for the engineer, security job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Information Security, Engineering, Education, Technical, Computer Engineering, Information Systems, Information Technology, Technology, Electrical Engineering
Skills for Engineer, Security
Desired skills for engineer, security include:
Desired experience for engineer, security includes:
Engineer, Security Examples
Engineer, Security Job Description
- Strong understanding of security controls and monitoring systems at all level of the OSI model, including intrusion detection/intrusion prevention systems, web proxies, email systems, endpoint security and SIEM solutions
- Maintain and promote the security posture of our products from the technical perspective, in view of today’s increasing levels of security threats & challenges
- Guide and coach the R&D Division Security Leads, professionally escort and challenge them, set goals, and utilize them for advancing the product security domain
- Performs ongoing security audits and vulnerability assessments to ensure that the Company security posture is not compromised
- Assesses reported security threats and weaknesses, across all security layers
- Design and promote technical and/or procedural solutions to security challenges to senior stakeholders for adaptation
- Delivers information security assessments, penetration tests and associated remediation
- Identify security vulnerabilities and risks, and develop mitigation plans
- Develop and deliver security training across the company
- Any operational security experience
- Minimum 8+ years working in a wide variety of information technology engineering and/or architecture roles including system or network engineering within mid-size to large environments
- Experience working in a Microsoft Windows and SQL Server environment
- Talent in understanding how security interacts with the broad culture of the organization
- Knowledge of or ancillary experience with PCI Data Security requirements would be considered a plus
- Footwear and apparel industry experience considered a plus
- Programming languages (Ruby, Python, Perl, Java, Bash )
Engineer, Security Job Description
- Cyber security evangelization and champion of automation
- Performs security audits, risk analysis, application-level vulnerability testing, and security code reviews
- Propose and prototype new technologies to automatically identify weaknesses and vulnerability in the security posture of customer infrastructure
- Cisco routing, switching technologies and/or F5 load balancing and security concepts
- Participate in the review of Sarbanes Oxley required security reports
- Own the structured process for responding to security issues found in the SaaS / Cloud based product offerings
- Lead from definition to implementation the significant security initiatives related to products
- Reflect and visualize the product security strategy and status to our senior management
- Delivers network (LAN/WAN, Load Balancing, light Checkpoint Firewall security rule creation) projects on time and within standard and budget
- Explain and demonstrate vulnerabilities to application/system owners, provide recommendations for mitigation, and design solution prototypes and/or implement security enhancements
- Escalations to other SOC teams through the use of the SOC's ticketing system
- Participation in the development of new logic and analytical capabilities
- Update and closure of SOC Tickets within SLA
- 10 years of IT-related experience with at least 3 years in information security required
- 5 years of management experience with at least 3 years at a senior management level required
- BS in computer science or engineering, or equivalent required, MS in management or MBA desired
Engineer, Security Job Description
- Experience in security incident response to include rapid triage and remediation of common security events
- Provides knowledge and expertise of the security field that will assist SYKES to meet its security and compliance goals
- Partners with architects to proactively evaluate cyber security vendor product strategies and future product statements and advise, which will be most appropriate to pursue
- Develops and maintains Security Posture/Risk Dashboard and supporting metrics
- Leads application and network security assessments, as assigned
- Uses detailed knowledge of Unum’s Technology Framework, technical environment, and cross-organizational IT functions to make security decisions and recommendations
- Conducts complex security policy violation investigations including forensics analysis
- Analyze threats, vulnerabilities and logs to determine security impact
- Build technologies to detect, prevent and mitigate security vulnerabilities
- Ability to correlate events from disparate sources to discover large security events
- Strong understanding of documentation procedures for systems, changes and desk level procedures
- Ability to think with a security mindset
- XSS/CORS/Injection attacks
- Cryptography, secure communications and authentication
- Deep knowledge of current technologies including Open Source, J2EE (JSP, Servlet, JSP, ), web application development, web services (REST/SOAP/XML), Rich Internet Applications, messaging infrastructures and databases
- Certifications and/or training in Intrusion Detection, Pen Testing and General Network Defense
Engineer, Security Job Description
- Tracking and reporting security incidents
- Conducts security monitoring, penetration testing, vulnerability scanning, forensic analysis, incident response and investigations
- Be aware of and provides recommendations, assessments and communication of business appropriate security and regulatory body requirements and best practice
- Engages vendors and third parties providing security services
- Test and evaluate new hard and software products inside the Security area
- Training and education of IT service units global- regarding implementations of Security systems and related hard- and software products
- Design, configure and/or develop security solutions for the Watson Health Cloud platform
- Ensure adequate security solutions and controls are in place throughout Watson Health Cloud platform, services, and solutions
- Provide security expertise for cloud-based DevOps development and deployment
- Recommends and drives additional security controls to meet current and future needs
- Experience with FireEye, BlueCoat, Splunk Core, Enterprise Security, Ironport, BRO IDS, Cisco Web Proxy, or SourceFire IDS
- Some experience with tools, techniques and standards used to conduct network penetration testing of assets in a Windows, Unix and Linux platform
- Experience with web development tools, techniques and standards used to conduct application penetration testing for applications that support but not limited to Java,.Net, JBoss, PHP, WebDev a plus
- Able to tailor and follow hardening guides and hardening best practices
- Familiarity with hacking techniques and appropriate countermeasures
- Experience with firewalls, rule base analysis, stateful inspection, encryption and associated algorithms
Engineer, Security Job Description
- Make recommendations for enhancements to existing security solutions to improve overall system security
- Collaborate between multiple departments such as IST and Development providing a risk-based, solution-focused perspective on technical security matters that align with business requirements
- Be proactive in recognizing security trends, predicting upcoming threats and adapting as necessary
- Participate in the planning and design of security architecture
- Analyze and implement complex firewall rules on and/or security devices
- Collaborate on the design of network infrastructure and their security subsystems
- Research and manage resolution of security findings from audits, assessments, and exceptions
- Troubleshoot firewall problems in a large enterprise involving complex network application flows between multiple hosts spanning multiple firewalls/security zones and different geographic locations
- Performing deep data analysis, correlating data from disparate systems, and using metrics to drive consistent system improvements
- Deliver your competent analyst findings and direction for technical solutions
- Expert knowledge of cybersecurity concepts covering network through application layers
- Experience conducting third party assessments of vendors and IaaS/PaaS/SaaS products
- Experience with securing mobile applications
- Experience in the design and deployment of end user web access and control infrastructure, including WCCP
- Scripting experience with JavaScript, Perl, Python, Powershell
- Background Check (SF85P)