Cyber Security Engineer at Ewing Township, NJ Locals

Duration: Contract to Hire in 6 months NO SPONSORSHIP AVAILABLE

Location: Ewing Township, NJ not accepting relocation candidates at this time - (candidate must have 1 hour or less commute)

Schedule: Hybrid 3X per week (First Month 5X onsite while ramping)

Interview Process: 2 rounds

Requirements:

• Strong experience with EDR and XDR tools like CrowdStrike Falcon ability to customize settings, run reports, etc.
• DLP experience Varonis experience is a very strong nice to have
• Cloud Experience They have AWS but either AWS or Azure is fine ability to query, scan, respond to alerts, and customize security settings
• Exceptional communication and soft skills

A day in the Life of this role:

• Research, architect, implement, engineer and monitor security solutions including networks, servers, endpoints and cloud infrastructure across a wide variety of systems and data types.
• Identify, define and document security controls. Transform information security recommendations into actionable IT security programs and solutions.
• Act as the subject matter expert for multiple security product suites including firewall, IPS, EDR/XDR, vulnerability scanning, email security, web proxy, SEIM and data lake.
• Interface with audit department to provide requested information and evidence. Understand, address and close findings in a complete and timely fashion.
• Prepare, document and maintain operating procedures, incident response procedures, security standards and troubleshooting guides. Create detailed playbooks for defined security processes.
• Triage, investigate, and escalate relevant security events for review. Comprehend incident response process and cooperate with appropriate teams and partners to manage incidents.
• Analyze daily security alerts and work with external professional services to address to address security events in real time. Collaborate to remediate threats and improve security controls.
• Engineer SEIM monitoring, reporting, and detection across various systems, incorporating aspects of XDR and SOAR to discover and resolve misconfigurations, threats, and attacks.
• Analyze vulnerability reports and security assessments to create and support actionable mitigation practices. Perform self-assessments of existing administered systems to identify security gaps.
• Understand encryption practices and technology including SSL/TLS, S/MIME, IPsec, Site to Site VPNs and data at rest encryption. Recognize new standards and maintain a modern environment.
• Architect, implement, and support MFA solutions, SSO integrations, and PKI infrastructure.
• Design and monitor security controls for various cloud computing environments.
• Contribute to a 24/7 on-call rotational schedule to serve as the immediate escalation contact for all security relevant matters. Expected to prioritize security matters when required.
• Attune knowledge and skills of security best practices and industry trends. Research new technologies and threats. Engage in education opportunities and pursue applicable certification.

Required Skills, Knowledge and Abilities:

• Excellent verbal, written and technical skills. Able to take highly technical information and present it to varied audiences in a manner easily understood.
• Hands on experience designing, implementing, operating and troubleshooting complex IT security solutions in a dynamic work environment.
• Able to work independently, as well as with a team, with the ability to transform high level requirements into well thought out, well documented, actionable plan.
• Genuine interest of security topics, technologies and trends. Drive to learn, grow, and adapt to the everchanging IT landscape and security threats.
• Technical writing skills with the ability to transform repeatable IT and security processes into referenced documentation.
• Detail-oriented observational and scribing skills as it relates to investigation, intelligence gathering, and incident response management.
• Experiences with incident response to include internal investigation, forensic investigation, and/or professional consultation.
• Experience administering, engineering, and analyzing data lake and SEIM technologies from Sumo Logic, Varonis, and/or CrowdStrike.
• Experience managing enterprise endpoint protection technologies such as Symantec, McAfee and/or CrowdStrike or equivalent solutions.
• Experience designing, implementing, and supporting security gateway solutions including Firewalls, IDS/IPS and VPNs from Checkpoint, Cisco and/or Palo Alto.
• Experience architecting, implementing and supporting Internet proxy server and web filtering solutions such as Zscaler, Forcepoint and/or McAfee.
• Experience with email hygiene and anti-spam solutions including Mimecast, Proofpoint or similar solutions.
• Experience with data encryption technologies and PKI digital certificate solutions from Microsoft and DigiCert or equivalent.
• Experience with back-office products such as Windows, Linux, DHCP, DNS, Active Directory, RADIUS, IIS, Exchange, SQL Server, VMware ESX and Windows networking.
• Experience with load balancing technologies such as F5, NetScaler and AWS ELB.
• Experience with Web Application Firewalls (WAF) such as F5 Silverline, F5 Distributed Cloud and AWS WAF.
• Experience with provisioning and managing networking and security controls within public cloud providers such as AWS and Azure.
• Experience partnering with third-party Managed Security Service Providers and Information Security providers.

Desired Education and Experience Level:

• 5-7 years of progressive work experience as an IT/cyber systems/security engineer.
• Bachelor s degree in computer science, information systems, or equivalent related work experience required.
• CompTIA Security (Plus), Network (Plus), A (Plus) certifications are preferred.
• Microsoft Azure, AWS or equivalent cloud security certifications are preferred.
• Vendor and product specific certifications are considered a plus where applicable.