Cybersecurity Engineer - SDLC

US-TX-Arlington
Requisition ID
2017-29709
Employee Type
Full Time-Regular
Category
Information Technology

Overview

The Cybersecurity Engineer is responsible for developing, deploying, monitoring, tuning, evaluating, reporting and maintaining systems and procedures; and to identify and mitigate threats to the corporate network, corporate assets, and corporate users. This team member will identify core requirements, design and implement security technologies, and work with stakeholders to perform ongoing tuning and alerting on those technologies. Security technologies may include, but are not limited to: Data Loss Prevention (DLP), Security Incident Event Management (SIEM), User Behavior Analytics, Host Intrusion Prevention (HIPS), and Web/Email Gateway.  This team member will be responsible for both technical implementation of systems and communication of security requirements to management and security leadership.  Additionally, this team member will be responsible, as necessary, with assisting in investigations into security threats.

Responsibilities

JOB DUTIES (Desired Skills)

  • Perform software vulnerability scanning and analysis using security testing tools and processes used to expose known and undocumented vulnerabilities in various information systems.
  • Conduct source code reviews and software penetration tests to confirm existence of vulnerabilities.
  • Using strong interpersonal skills articulates vulnerabilities to technical and not-technical audiences
  • Provide technical understanding of vulnerabilities and exploits using knowledge of coding frameworks and web application infrastructure (Application Servers, Web Servers, APIs, etc).
  • Provide knowledge and support for software and web application migration devices (WAF, API gateways, etc.)
  • Using creative thought, technical understanding of exploits, and attacker behaviors provide additional details on how software is at risk of penetration.
  • Creation of vulnerability reports to disseminate to groups based on operational hierarchies.

Pluses:

  • Prior experience with databases and use of SQL to retrieve and report data.
  • Prior coding experience in a high-level and/or web development programming language

 

REPORTING RELATIONSHIP

Reports to: Cybersecurity Manager

Direct Reports: None

Qualifications

Knowledge

  • Strong technical skills and hands on experience in information security as it relates to server security, client security, user security, network communications, and data storage.
  • Practical experience implementing security solutions and performing initial tuning and monitoring in the environment.
  • Proven expertise developing custom rule sets for tools to identify specific attacks and exploits based on feedback and requirements from business stakeholders including Compliance and Legal Counsel.
  • Practical experience scaling solutions to meet enterprise sizing requirements and performing tuning to manage the amount of alerting that occurs.
  • Strong knowledge of core Information Technology concepts such as TCP/IP networking, Windows & Active Directory, Unix/Linux, Mainframe, Cloud Service Providers, Relational Databases, Data Warehouses, and filesystems.
  • Strong knowledge of IT technologies and methods to secure them, specifically for databases, SharePoint, storage area networking, cloud-based storage, and data warehouses.
  • Practical experience with data loss, data privacy, regulatory requirements.
  • Strong knowledge of the OSI model and security that is associated with each layer.

 

Required Skills

  • Experience in setting appropriate priorities for tasks to be accomplished based on project plans and management priorities are required.
  • Proven ability to communicate across multiple levels of stakeholders.
  • Ability to interpret and document business and technical requirements.
  • Good interpersonal, verbal and written communication skills.
  • Detail oriented with good time and analytical skills.
  • Ability to exercise prudent judgment and offer knowledgeable advice.
  • Ability to work both independently and in a team environment.
  • Ability to manage multiple projects and tasks.
  • Ability to manage production sensitive situations
  • Be a reputable representative of the department

 

Experience

  • A minimum of 1-5 years of experience in large and complex business environments with a successful track record working directly with senior level management with at least 1 year of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development.
  • Hands on experience supporting security requirements of a large, global enterprise environment.
  • Bachelor's Degree or equivalent experience strongly preferred
  • Cybersecurity related certifications strongly preferred

 

WORKING CONDITIONS

  • Normal office environment. Subject to stressful situations and requires many hours per day working on a computer workstation
  • 0-20% travel may be required
  • Some after-hours work and periodic 24x7 on call support will be required.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.