Information Security Engineer

Overview

Skills, Experience, Qualifications, If you have the right match for this opportunity, then make sure to apply today.

Goldbelt Incorporated is an Alaska Native Corporation (ANC) headquartered in Juneau, Alaska, whose mission is to make a significant and positive difference in the lives of more than 4,200 Alaska Native shareholders. Alaska Native Corporations hold a distinct purpose and share a familiar creation story born in an act of Congress in 1971.

Join a fast-growing “forever” company that manages over 30 subsidiaries and provides centers of excellence in a shared service center model based out of Herndon, Virginia.

At Goldbelt, we place a strong emphasis on recognizing and rewarding the dedication and hard work of our team members in pursuit of our company's mission. We are a team focused on gold standard customer service and professional growth with competitive benefits and profit-sharing plans and help support a business model that gives back to the community of shareholders.

Summary :

Goldbelt Inc. is seeking a highly skilled and motivated Information Security Engineer to join our IT Security team. The successful candidate will play a critical role in safeguarding our organization’s information assets, designing robust security systems, and ensuring compliance with industry best practices and regulations. This role involves a mix of strategic planning, hands-on implementation, and ongoing management of security measures to protect our data and infrastructure.

This is a remote position that requires working in the Herndon, VA office two days per week.

Responsibilities

Essential Job Functions :

• Design, implement, and maintain security systems, including firewalls, intrusion detection / prevention systems, and endpoint protection
• Develop and deploy network security measures such as VPNs, encryption, and secure access solutions
• Conduct regular vulnerability assessments and penetration testing to identify security risks
• Develop and implement strategies to mitigate identified vulnerabilities and ensure timely patch management
• Assist in investigations and response to security incidents, including forensic analysis, reporting, and remediation efforts
• Assist in developing and maintaining incident response plans and procedures
• Assist in ensuring compliance with relevant laws, regulations, and standards (NIST, GDPR, HIPAA, PCI-DSS)
• Conduct regular risk assessments and audits to evaluate the effectiveness of security measures
• Develop and maintain comprehensive System Security Plans (SSPs) and Plan of Action & Milestones (POA&M) to track and address security vulnerabilities and compliance issues
• Develop, implement, and enforce applicable security frameworks and standards, including NIST 800-171, ISO / IEC 20000 / 27001, and CMMC security controls
• Participate in the development and review of information system security policy and standards
• Support the development and maintenance of system asset lists, hardware, and software baselines
• Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments
• Verify and document the implementation of security controls necessary to achieve compliance
• Keep management apprised of impending areas of concern, verbally and in writing
• Assist in developing various policy documents (SOPs / CONOPs) as required, including policies regarding Configuration Management, IS Sanitization, Media Security, Password Policy, Business Continuity, Incident Response, Disaster Recovery, and Security Assessments
• Assist in maintaining and maturing existing information security and risk policies
• Initiate and lead ongoing information security maturity assessment processes and training
• Identify and report on key performance indicators for implemented security measures
• Maintain knowledge of the threat landscape by monitoring threat intelligence sources
• Develop, implement, and enforce security policies, procedures, and protocols
• Provide training and awareness programs to educate staff on security best practices and protocols
• Review logs of network traffic and system activity for signs of potential security breaches
• Analyze security logs and reports to identify trends, anomalies, and areas for improvement
• Work closely with IT operations to integrate security into system and software development processes
• Communicate security issues and recommendations to stakeholders, including Executives, IT staff, and end-users

Qualifications

Necessary Skills and Knowledge :

Minimum Qualifications :

Preferred Qualifications :

The salary range for this position is $113,000 to $140,000 annually.

Pay and Benefits

At Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. Our annual incentive compensation plan is designed to reward your contributions to Goldbelt's success. It's a profit-sharing initiative tied to our strategic objectives, demonstrating that your efforts directly impact our achievements. As an employee, you'll also enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.

J-18808-Ljbffr

Salary : $113,000 - $140,000