Security Engineer (DLP & Vulnerability)

Position Overview:

We are seeking a passionate and skilled Security Engineer to join our dynamic team. As a key member of our Threat Management and Response initiatives, you will work closely with teams both within and outside of GIS to strengthen our security posture. You will play a pivotal role in engineering, operationalizing, and enhancing security systems designed to detect and prevent threats, safeguarding our corporate and marketplace environments.

The ideal candidate will bring a solid background in security administration and DevOps, paired with a strong interest in developing and automating creative security solutions.

Key Responsibilities:

• Evaluate and recommend emerging security technologies: Stay ahead of the curve by identifying new security products and technologies to monitor both on-prem and cloud-based environments.
• Design security configurations: Define security configurations for threat detection and prevention tools to ensure optimal performance.
• Automate security workflows: Build and implement automated workflows to streamline security operations and increase efficiency.
• Monitor and maintain security systems: Proactively manage the performance, availability, security, and capacity of supported security products and services.
• Conduct research and provide recommendations: Continuously research and analyze emerging security technologies, providing insights and recommendations to improve overall security measures.
• System maintenance and upgrades: Oversee the maintenance, enhancements, and upgrades of security systems in line with industry best practices and project methodologies.
• Collaborate across teams: Work closely with cross-functional teams to ensure security initiatives align with organizational goals and best practices.

Basic Qualifications:

• 5 years of hands-on experience in Security Administration and DevOps.

Proficiency in tools such as:

• Endpoint protection, DLP, Data Activity Monitoring, Imperva, Qualys, Tanner, Vulnerability Scanning.
• Security Information and Event Management (SIEM) systems like Splunk.
• Endpoint Detection and Response (EDR) tools.
• Extensive knowledge of cloud security best practices and monitoring systems/services hosted in public/private cloud environments (IaaS, SaaS).
• Familiarity with containerization technologies such as Docker and Kubernetes.
• Scripting: Experience with scripting languages such as Shell and Python to automate security tasks and workflows.
• Strong proficiency with Linux operating systems.
• Experience with DevOps tools like Salt, Git, Ansible, and automation/orchestration frameworks.