Info Security Engineer Job Description
Info Security Engineer Duties & Responsibilities
To write an effective info security engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included info security engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Info Security Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Info Security Engineer
List any licenses or certifications required by the position: CISSP, PKI, SANS, CISM, CISA, AWS, SSL, GIAC, CEH, GRC
Education for Info Security Engineer
Typically a job would require a certain level of education.
Employers hiring for the info security engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Primary Degree in Computer Science, Information Technology, Technical, Technology, Information Security, Engineering, Science, Management, Architecture, Project Management
Skills for Info Security Engineer
Desired skills for info security engineer include:
Desired experience for info security engineer includes:
Info Security Engineer Examples
Info Security Engineer Job Description
- Helps coordinate ATM security assessments and drive remediation of identified risks and control deficiencies
- Serves as technical and functional subject matter expert across multiple security domain areas, raising awareness and communicating security risks within the company
- Works to mentor junior members within the team
- Participates in planning and estimation toward ATM security remediation projects
- Stays current with ATM security compliance requirements and industry trends in support of department goals
- Act as the Primary Subject Matter Expert (SME) with Data Loss Prevention, Anti-Virus, and Host Intrusion Prevention Security Tools
- Experience in security hardening of Operating Systems in a standalone environment through GPOs preferred
- Works with ISE I and EISM in the creation and implementation of security management policies and procedures, provide mentoring to the ISE I
- Demonstrated ability, communication skills, leadership and mentoring skills
- Demonstrated mastery of relevant skills
- Knowledge of various platform security tools (e.g., AV, HIPS, firewalls, DLP, ) (desired)
- Knowledge of various database security tools (e.g., activity monitoring, ) (desired)
- Knowledge of shared security technologies (e.g., Archer, ArcSight, Nexpose, Spotfire, ) (preferred)
- Knowledge of various platforms (e.g., Windows, Linux, ) HIGHLY DESIRED
- Technical information security certification (e.g., CCNP, MCSE, MCITP/MCTS)
- Minimum 4 years of hands-on security engineering experience REQUIRED
Info Security Engineer Job Description
- Supports ISE II in information security assessments or audits of internal networks and systems with the EISMDocument findings in written reports with recommendations for remediation
- Effective communication and technical skill
- Accept the EISM delegation occasionally
- Manage and maintain key Information Security tools to help mature and improve the overall effectiveness of solutions across the organization to safeguard information systems, intellectual property assets and customer data
- Design, implement and support integration of information security solutions including security architectures, firewall analysis, and developing and coordinating security implementation plans to improve monitoring and compliance functions and drive automation and efficiencies
- Manage remediation of security issues with technology and business teams to ensure remediation is completed timely and effectively
- Analyze existing processes to identify improvement opportunities, recommend solutions and lead implementation
- Help train associates, contractors, alliance or other third parties on information security policies and procedures
- Monitors compliance with information security policies and procedures and monitors access control systems to assure appropriate access levels are maintained
- Develop, support and manage Security metrics & reporting
- Minimum 4 years of experience and working knowledge of various platforms (e.g., Windows, Linux, ) REQUIRED
- Minimum 4 years of experience and working knowledge of various platform security tools (e.g., AV, HIPS, firewalls, DLP, ) REQUIRED
- Minimum 5 years of in-depth knowledge and experience of security tools such as Symantec DLP suite, Security Analytics, Tanium, Web Proxy, Encryption standards, Ironport, Proofpoint
- Ability to deliver results in a team environment, independently
- Experience with or knowledge of various network security tools (e.g., firewalls, NIPS, WIPS, VPN, DLP, ) (desired)
- Experience with or knowledge of specific security technologies (e.g.ArcSight, Nexpose, Splunk, ) (preferred)
Info Security Engineer Job Description
- Serves as enterprise information security consultant, conduct information security risk assessments
- Lead computer forensic analysis, cyber-crime investigation, incident emergency response and investigations
- Responsibilities may include Active Directory, SharePoint and IIS security
- Mentor the e-Commerce information technology organization in understanding and adhering to architecture design standards and guidelines
- Develops processes, scripts, and applications to align with the security architecture vision
- Oversees the installation, configuration and management of key IT security systems (SIEM, IDS/IPS, Vulnerability Scanning, Web Application Scanning)
- Evaluate and develop approach to solutions while proactively assess items of risk and opportunities of vulnerability in the network
- Provide vulnerability remediation and mitigation recommendations
- Assist in IT security incident response and documentation
- Perform regularly scheduled security reviews (e.g., technology, operations and personnel)
- Minimum 4 years’ experience with PingFederate and Microsoft Azure Identity or other federation solutions
- Experience setting up and administrating the PingFederate or any federation solutions in a clustered setup
- Experience developing and maintaining custom connectors/adapters in PingFederate/any federation engine using java
- Development Experience with programming languages like C#,, Java, JavaScript and web frameworks likeASP.NET /JSP/Servlets
- Deep understanding of and experience with SSO & Federation products such as PingFederate and Microsoft Azure Identity
- Experience managing complex directory service and federations environments
Info Security Engineer Job Description
- Monitor network to ensure network availability to all system users and perform necessary maintenance to support network availability
- Researching, designing, engineering, and implementing the next generation Data at Rest technologies and processes to address security issues holistically
- Identify requirements for the control, develop and publish them, manage the relationship with our technology partners in GIS and CTO, and will be responsible for ensuring the next gen control needs are met
- Act as the primary liaison with our technology counterparts and should possess a good deal of experience in information technology and specifically with Data at Rest controls
- Routine reporting and communication of efforts
- Other tasks assigned and as applicable
- Abide by and operate under the firms code of ethics, foremost being honesty, integrity and loyalty
- Develop security vision and direction for any tools they own, collaborate on development strategies and goals for new tools
- Train and Develop documents and procedures that support and enforce security standards, policies and procedures to raise the security posture while lowering the risk
- Understand the current environment and detect critical security vulnerabilities and risks provide feedback on timely remediation of security issues or incidents
- Experience in implementing the AD authentication from PingFederate (or other products) using Kerberos/NTLM
- Scripting and programming skills, PowerShell, shell/Perl, interfacing to LDAP using APIs
- Background implementing IAAS, SAAS & PAAS
- In-depth knowledge of Amazon Web Services (AWS) (AWS exp not required, but preferred) and other public and private cloud infrastructures, particularly knowledge of services, architectural/operational design patterns that are applicable to securing AWS workloads
- Strong Unix/Linux and/or Windows systems administration experience
- Hands-on experience in implementing security controls and compliance requirements in AWS environments
Info Security Engineer Job Description
- Stay up to speed on 3rd party known security vulnerabilities
- Participates in all information security projects and the day to day maintenance of security infrastructure
- Leads the vulnerability and patch management effort and assures organizational risk is minimized
- Configure and troubleshoot security infrastructure devices and applications
- Participate in security investigations and incident response when necessary
- Will recommend, evaluate, manage, and maintain key Information Security tools that safeguard information systems, intellectual property and customer data
- Analyze existing security processes to identify improvement opportunities, recommend solutions and lead implementation
- Manage the remediation of security issues with technology and business teams
- Monitor compliance with information security policies and procedures and monitor access control systems to assure appropriate access levels are maintained
- Serve as an enterprise information security consultant
- Knowledge of networking concepts (DNS, TCP/IP, standard protocols)
- Information security certifications are a plus (CISSP, CISM, SANS, Security+, etc)
- AWS certification are a plus
- Ability to use a SQL client and write basic SELECT queries from relational databases
- Working knowledge of corporate Learning Management Systems (LMS) from an operations role
- Scripting skills preferably in python with ability to perform analysis using data from sources such as .csv and web services