Cyber Security Engineer-HYBRID (New York, NY) Job at CEDENT, New York, NY

RmVBbm9kcUkxVTFnckdpQjhYM1NTRmlCWkE9PQ==
  • CEDENT
  • New York, NY

Job Description

Under the general guidance of the IT/Security Architect or Systems Manager, the candidate will be responsible for evaluating and implementing new technologies, analyzing cybersecurity related components and controls associated to the product, process and solution, and identify and resolve potential issues to help enhance and secure a large enterprise network. The position requires a broad foundation of IT/Security architectural experience with an understanding of Internet, server/storage technologies, cloud services/integrations are a must. The candidate will be responsible for designing complex and innovative solutions addressing vulnerability detection, threat and risk analysis, network intrusion, securing technology assets across the application, infrastructure, cloud and data tiers and development/implementation of vulnerability mitigation strategies. This is a hands-on team member who actively works with various teams including security, infrastructure and development teams to improve our overall security standards. This position is expected to be the last level of technical escalation within the company for the assigned responsibilities.
Guides Cyber Governance and Information Protection team and makes informed security decisions on the design of infrastructure, systems and applications.
Works with tech leads and teams to ensure security is built into app development, network infrastructure and cloud systems. Work with necessary Information Technology groups to satisfy specific technology related issues. Act as an Information Security liaison between the customers and all groups in Information Technology
Implements industry leading practices around cyber risks and Cloud security and perform security assessments of cloud platforms/environments using industry standard frameworks such as ISO, CSA-CSM and NIST
Designs and develops security policies, standards and procedures e.g. firewall rules, SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption), user account management (SSO, SAML), and password/key management.
Identifies software weaknesses that could lead to exploitable vulnerabilities such as SQL injection, cross-site scripting, cross-site request forgery, buffer overflows, use of hard-coded passwords, weak encryption, sensitive data.
Seasoned professional with detailed technical knowledge of techniques, standards and state-of-the art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation. Can advise on architecture decisions at technical and product level.
Adequate knowledge of web related technologies (Web applications, Web Services and Service Oriented Architectures) and of network/web related protocols.
Experience working with Cloud security posture management tools.
Constantly looking for better ways of solving security problems and designing the solution, not afraid of challenging the status quo.
Respond swiftly to all alerts, performing initial risk/impact assessments or escalating issues as appropriate
Follow change management controls and guidelines.
Support operating organizations during corporate emergencies. Participate in the Company's emergency management processes, cyber security and storm plans.
Perform other related tasks and assignments as required.

Skills & Requirements

  • Antivirus
  • EDR
  • IDS/IPS profiles
  • Implemented vulnerability management
  • IPS Management
  • Manage vulnerabilities
  • SIEM
  • Must be comfortable and skilled at driving information security processes and techniques. Must be able to communicate designs and give persuasive presentations. Must be able to interact with all levels of management and communicate technical concepts to a non-technical audience.
  • Ability to handle multiple assignments with changing priorities while meeting deadlines.
  • Must be flexible and able to work off-hours as required to support deployments, resolve production problems or respond to corporate emergencies.
  • Ability to establish medium and long-term plans and priorities and estimate investment requirements.
  • Minimum 5 years of hands-on experience working in cyber security and related discipline.
  • Minimum 5 years of hands-on experience in designing, developing, implementing secure architectures and/or processes.
  • Experience with implementing or integrating commercially available infrastructure components.
  • Experience in evaluating technology and establishing standard designs.
  • Must be conversant in emerging technologies and practices such as cloud computing.
  • Familiarity with security vulnerability management products, process and industry best practices
  • Familiarity of security infrastructure and application assets to design and implement Cybersecurity controls and designs.

The following are not required for this position but would be considered as a valuable asset in a potential candidate.

  • Knowledge in OT/ICS protocols.
  • Technical certifications (e.g., AWS Certified Solutions Architect, Cloud Certified Professional, Microsoft Cloud Certifications, CISSP, CISM, CIPP, GCIP etc.). are preferred but not mandatory. Experience in Agile Development, with specific Security Architect (or similar) experience preferred. Knowledge of security tools is preferred.

Job Tags

Flexible hours,

Similar Jobs

The Arc Southwest Georgia

Transportation Driver Job at The Arc Southwest Georgia

The Arc of Southwest Georgia JOB DESCRIPTION TRANSPORTATION DRIVER JOB SUMMARY: This position is a part-time position. Responsibilities...  ...position include safely transporting individuals served to medical and dental appointments and other locations as instructed by the... 

Yufu.net厦门语富翻译咨询有限公司

Freelance Translators and Interpreters- in any city of China Job at Yufu.net厦门语富翻译咨询有限公司

Yufu.net is an innovative Chinese interpreters booking system, which helps people from all around the world to book any language interpreter...  ...fill in all required fields: name, language, city in China, phone number. If you dont fill in this information, your potential... 

Health Advocates Network

RN - Nurse Educator Job at Health Advocates Network

 ...disability plans+ Competitive pay rates+ Referral opportunities ? Refer a friend & Cash in!+ Travel reimbursement and per diem allowances+ Employee discounts+ Educational opportunitiesHealth Advocates Network was founded based on a shared aspiration to improve the... 

Pkaza

UPS Field Service Technician Job at Pkaza

 ...UPS Field Service Technician Denver, CO This job opportunity is with a market leader of Critical Power Solutions and Services...  ...recommendations to clients Candidate must be willing to work nights & weekends when necessary / be on call when needed Knowledge... 

Jobright.ai

Junior Database Analyst - Entry Level Job at Jobright.ai

 ...collaboration skills Comfort working with large sets of data Organized, self-motivated, and proactive -Preferred: Bachelors degree in a related field preferred but not required Previous experience in a data-related or technical role is a plus...