What are the responsibilities and job description for the IT Security Engineer position at Idaho State Job Bank?
IT Security Engineer at Western States Equipment Company in Meridian, Idaho, United States Job Description Description SUCCESS AT WESTERN STATES : Western State's culture is based on passion for our Vision, Mission, and VALUES. We are fiercely committed to SAFETY and sending every employee, safely home, every day. We strive for EXCELLENCE in all we do and are proud to be a 'play to win' organization. We act with INTEGRITY in each and every decision we make. Our People and TEAMWORK drive a fun and engaging culture. We are ACCOUNTABLE as individuals and as an organization. JOB SUMMARY : The Cybersecurity Engineer is responsible for designing, implementing, and maintaining security measures to protect company networks, data, and systems from cyber threats. Key responsibilities include performing system evaluations, vulnerability testing, network hardening, and monitoring network traffic for threats. The role involves creating security reports and dashboards for senior leadership, coordinating with business units to balance security practices with operational workflows, managing incident responses, and active and proactive threat hunting. This position collaborates with IT teams and business units on new deployments, in policy management, and in end-user education on cybersecurity principles. Further, the role requires proficiency with the Microsoft E5 security stack, Microsoft Azure, and NIST and CISA frameworks implementations. Perhaps most importantly, the Cybersecurity Engineer aims to foster a cyber-safe culture across the organization. ESSENTIAL FUNCTIONS : SafetyActively cares, promotes, manages, and advocates safety at Western States. As a team member in the organization, it is critical to ensure all employees, vendors, and clients have a safe work environment while adhering to all applicable safety policies, procedures and standards.Maintains clean / clutter free personal work areas to ensure a safe environment for all WSECO employees.Adhering to required personal protective equipment (PPE) as identified in safety policy.CybersecurityDesign, implement, and maintain security solutions to protect company networks, data, and systems from cyber threats.Perform system evaluations including security baselines, vulnerability testing and resolution, and system hardening.Maintain network security in cloud-based and on-premises systems including edge firewall, switch, and network security groups.Build security reporting and dashboards; prepare presentations on security posture and metrics for senior and executive leadership.Coordinate security efforts with business units to balance workflow and security best practices.Contribute to and maintain cybersecurity policy including Incident Response, Data Management, Vulnerability Management, and others.Work with infrastructure teams to manage installation of latest security patches, firmware, and other attack surface reduction efforts.Monitor network traffic and perform threat hunting to ensure overall security and appropriate incident response activity; Monitor logging, alerts, behavioral analysis, and other data incorporated into company SIEM to defend against threats.Recommend cybersecurity improvements and spearhead projects for implementation of solutions.Provide support in incident response investigations and work with other IT and business units to contain and resolve security incidents.Monitor new developments in the cybersecurity landscape, including zero day, CVE, and emerging threat intelligence.Participate in software implementation and software development meetings to provide security insights and recommendations to ensure up-front protection in new deployments.Remediate issues occurring with any IT security systems including but not limited to unexplained system outages, cyber security incidents, issues with data collection feeds or interfaces with external MSSP providers.Collaborate with IT teams and senior staff in planning, designing, developing, deploying, integrating and maintaining cyber security tools.Author and maintain documentation of processes and procedures in the central knowledge base.Participates in after-incident lessons learned meetings to give input on recommendations for additional tools or other mitigations for future incidents.Perform other duties as assigned.SKILLS, KNOWLEDGE, AND ABILITIES : Knowledge of SASE, SWG, RBI, and CASB.Experience in DLP, ZTNA, RBAC, and similar security principle implementation.Demonstrated knowledge of the Microsoft E5 security stack including Defender XDR, Sentinel, Azure EASM, Defender for 365 (Exchange Tools), etc.Extensive use of SIEM and SOAR tools to monitor, alert, and respond to cybersecurity threats as they occur.Experience with NIST and CISA frameworks and demonstrable implementations within business environments.End-user education of security principles and the building of a 'cyber-safe' culture.Knowledge of... For full info follow application link. Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities To view full details and how to apply, please login or create a Job Seeker account