Lead Information Security Engineer

Job Description

Primary/Essential Duties and Key Responsibilities Review, test, and implement security solutions related to Email Protection (eg. Proofpoint, Barracuda, SpamTitan, Mimecast, or Barracuda) DLP – Must have Public Cloud (eg. AWS, Azure, or GCP) – Must have ZTNA solutions (eg. Zscaler, Axis, Prisma Access) - Strongly encouraged. DDOS/WAF (eg. Cloudflare, Silverline, Cloud Armor) – Strongly encouraged. Firewalls/IDS/Network Detection and Response tools – Must have Assess network security architectures, document findings and recommendations based on industry best practices. Solid understanding of network protocols, including TCP/IP, DNS, DHCP, and routing protocols – Must have Define and review security policies to control access to systems. – Must Have Experience with firewall administration, VPN configuration, and network intrusion detection/prevention systems – Must Have Strong knowledge of security best practices and standards (e.g., ISO 27001, NIST) Relevant certifications such as CISSP, CISA, CISM, or CCNP Security are a plus Perform implementations and configuration of network security technologies Apply Zero Trust principals to control network access to resources Recommend, create, and maintain security configuration baselines to be used to harden systems Ensure all systems security operations and maintenance activities are properly documented and updated. Automate manual tasks for improved efficiencies (eg. infrastructure as code) Support Enterprise Risk with audits and compliance initiatives Assist in developing requirements and driving deliverables Knowledge, Skills and Abilities Strong knowledge and understanding of both network and application layer firewall concepts Hands-on experience with Enterprise Class firewalls Knowledge of security frameworks including NIST, ISO, CIS, OWASP 10, etc Understanding of SSL/TLS certificates and implementation (Private and public key infrastructure) Working knowledge with Powershell, Ansible, Terraform, RegEx, Chef or Puppet are preferred – nice to have Experience with Public Cloud provider infrastructure, system deployments and product release operations a plus Excellent written and verbal communication skills Excellent teamwork and collaboration skills Results oriented, high energy, self-motivated Required Qualifications Minimum five (5) years of experience in a Network Security Engineering role working with Firewalls, DDOS/WAF, IPS and ZTNA Bachelors or Masters in Information Systems, Information Security, or related fields; preferred but not required Industry recognized Security certification such as CSSP, CISSP, or Security+, etc