|Date Posted||June 8, 2019|
Ref ID: 04130-0011024698
Classification: Network Engineer
Compensation: $95,000.00 to $130,000.00 per year
The Cyber Security Engineer will also oversee patch management and vulnerability management processes. Essential Responsibilities ? Acquire and analyze digital evidence from a variety of workstation, server and mobile platforms. ? Analyze log files (sys logs, firewall logs, etc.) to determine security incident impact. ? Assist in the security incident response process ? to include analyzing systems with potential malware infections, analyzing emails to determine if they are phishing, spam, etc., identify root cause. ? Author regular cybersecurity reports (i.e., monthly dashboards, audit remediation status updates, patch compliance, project status reports; Monthly, quarterly, and ad-hoc strategic and operational risk reporting and analytics for trending, risk assessment, compliance, and active exception reporting. ? Conduct scans and configure scanning tools to assist in identifying vulnerabilities and inventory IT systems (may include port scans, vulnerability scans, etc.). ? Create/heighten security awareness within the organization by marketing, sending e-mails, create presentations, and present material to employees and contractors. ? Develop and enhance security policies, processes and procedures; support service-level agreements (SLAs) to ensure that security controls are managed and maintained. ? Ensure compliance with applicable statutes and regulations. ? Execute authorized information security project and initiatives. ? Implement and audit domain administration restrictions and Group Policy application on user and computer objects. ? Keep abreast of emerging cyber security tools and best practices. ? Lead/facilitate annual cyber tabletop exercises. ? Maintain user security by developing access controls, monitoring and evaluation of security standards. ? Monitor the company?s computing environment (servers, firewalls, intrusion detection/prevention systems, anti-virus and malware) logs and network traffic for activities including but not limited to policy violations, abnormal behaviors, intrusions, best practice recommendations, etc. ? Oversee penetration testing of all networks and systems to identify system and application vulnerabilities; lead resolution and remediation of findings. ? Participate in information security audits. ? Participate in Information Security initiatives and projects. ? Participate in an on-call rotation for information security and resolve service outages within SLA.