Overview

Are you passionate about safeguarding digital landscapes from evolving threats? Do you thrive on the exhilarating challenge of outsmarting cyber adversaries? If you're a tenacious problem-solver with a knack for navigating the complex realm of cybersecurity, we have an electrifying opportunity for you! Join our dynamic team as a Cybersecurity Engineer and embark on a journey to fortify our digital fortresses against emerging risks while shaping the future of secure technology.

Here's some of what you will be doing:

• Planning, implementing, monitoring, and upgrading security measures for the protection of the organizations data, systems, and networks.
• Monitor vulnerabilities and remediate issues for all devices and systems on the EMF security network.
• Responsible for preparing and documenting standard operating procedures and protocols.
• Oversee incident management implementation and process.
• Seek to identify incidents that are missed or inaccurate, submit finding and suggestions to integrations and automations.
• Ensure incidents are addressed within the established SLA’s.
• Develop effective strategies for incident remediation and technology to orchestrate and automate responses.
• Provide detailed technical analysis of high severity incidents identified (through SIEM, Office365, Cortex Data Lake, or other channels) to determine impact.
• Evaluate attack techniques and identify methods to reduce opportunities of successful attacks.
• Monitor and maintain current knowledge of technologies and methodologies current to industry security trends and advances, and present recommendations as necessary through continued education and certifications.
• Conduct investigative analysis on investigations related to Human Resources, Incident Response, Special Investigations, and others as needed.
• Review incident detection tools such as web application firewall (WAF), file activity monitoring (FAM), intrusion detection systems/ intrusion prevention systems (IDS/IPS), database activity monitoring (DAM), security information and event management (SIEM), end point anti-virus (AV), data loss prevention (DLP) to determine where improvement can be made to reduce time to detect.
• Create and drive remediate ServiceNow incident tickets and participate in the change management process.
• Ensure that the ministry’s sensitive information and IT equipment are kept safe and confidential by implementing the correct security measures.
• Provide input into development of technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
• Apply Security Awareness training programs and administer simulated phishing platform.
• Administer and support enterprise security controls.
• Daily administrative tasks, reporting, and communication with the relevant departments in the organization.
• Partner with team members and other departments to troubleshoot and resolve issues.
• Maintain inventory of all security applications and hardware in an organized manner, ensure inventory lists are kept current for accuracy.
• Perform other tasks and duties as assigned.

Here's some experience we are seeking:

• Bachelor’s degree in computer sciences, information systems, or equivalent experience.
• Security certification. preferred.
• Certifications in Information Security an added plus, CEH, PenTest , GPEN, OSCP or equivalent.
• 1-2 year of Information Security systems experience.
• Solid ability to manage and report on multiple projects / system deployments concurrently, prioritizing efforts, managing time effectively, and requiring minimal supervision in the execution.
• Good understanding of current threat landscapes and continued efforts to understand how to defend against emerging threats.
• Demonstrate problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a dynamic, agile environment.
• Familiarity with leading industry vulnerability and software (preferably Qualys) and standard disaster recovery policies and procedures.
• Familiarity with Information Security standards such as NIST, ISO, and CIS.
• Familiarity with infrastructure architecture, virtualization, and cloud technology.
• Familiarity with Microsoft Server, Linux, Apple, and Active Directory architecture.
• Willingness to work in a team-oriented environment and possess excellent communication skills.