Skip to content
Careers

Senior Security Engineer

JR005805

Job Function Overview:

The Senior Security Engineer is an individual with a strong background in information security technologies and processes. The Senior Security Engineer, under the direction of the Security Engineering Senior Manager, will be part of an expanding team responsible for engineering security solutions for a global managed service provider. The Senior Security Engineer will participate in evaluating, developing, implementing, and maintaining security tools, standards, procedures and guidelines for multiple platforms and diverse system environments.  The Senior Security Engineer will need to be able to ensure that the solution aligns with architectural and business models to achieve optimal solutions for Ensono and its clients.
 

This individual will have the opportunity to enhance their technical abilities while working across a variety of security technologies to include but not limited to vulnerability management, data loss prevention, intrusion detection/prevention, log management and security incident & event management, and firewalls. This position serves as a senior security professional and is responsible for assisting in driving security projects and solutions to meet internal and customer security and compliance needs.

After-hours and/or on-call duty may be required.

Responsibilities include:

  • Strong technical writing skills to include the ability to provide clearly written and detailed reports on projects for communication to leaders
  • The design, implementation, and administration of information security solutions
  • Support internal and customer auditing requirements
  • Create internal and customer facing security standards and procedures
  • Align procedures, processes, and security tools to support a single global cybersecurity model
  • Provide guidance to and mentorship to members of the Security Operations Center
  • Perform incident response roles as necessary per the Ensono Incident Response Plan
  • Evaluate, test, and implement security application upgrades and patches
  • Provide consultative advice on threats and vulnerabilities
  • Interact with other teams to create, maintain, and implement security hardening standards
  • Design and maintain systems to comply with compliance standards such as PCI-DSS, etc.
  • Mentor new and existing security engineering team members
  • Perform or assist with penetration testing activities
  • Provide recommendations and assist with the creation of security product roadmaps
  • Consult with product owners to ensure alignment of solutions to security product offerings

Knowledge and skills:

  • 5 or more years full-time experience in an information security position
  • Ability to lead or manage multiple security engineering projects simultaneously
  • Cloud security solutions such as Microsoft 365 Defender, Security as a Service implementations
  • Knowledgeable of network and cloud architecture concepts to include virtual firewalls and containers
  • Excellent understanding of TCP/IP based networks, DNS, firewalls, encryption, security concepts, common attack vectors/types
  • Good understanding of malware classification, entry vectors and propagation channels
  • Strong knowledge of digital forensics or penetration testing
  • Experience with File Integrity applications such as Tripwire or Trend Micro Deep Security
  • Experience with vulnerability scanning tools and experience evaluating vulnerability risks
  • Experience with password vaulting for encrypting and storing credentials
  • Experience working with 3rd party auditors and compliances such as for PCI-DSS, SSAE SOC1/SOC2, and/or ISO270001
  • Experience with security incident response in a large enterprise environment
  • Experience with scripting such as VBScript, PowerShell, or Python
  • Experience in creating clear and robust security standards and procedures
  • Anti-malware applications
  • Host based IDS/IPS applications
  • Security auditing and forensics tools (Metasploit)
  • Security information and event management applications
  • Certificate management applications
  • Web application gateways

Education:

  • Security certifications such as CISSP, CISA, CISM, CEH, SANS GIAC
  • Bachelor’s degree in information security or a related field of study

JR005805

Your journey with Ensono starts here.

Apply now

More career opportunities at Ensono

Explore additional openings with our team, and apply today.

Start your digital transformation today.