IT Security Specialist

IT Security Specialist

MHP at a Glance

As a digitalization pioneer in the mobility and manufacturing industries, MHP transfers its expertise to a wide range of industries and is a premium partner for thought leaders on their way to a Better Tomorrow. MHP serves over 300 customers worldwide. Among them are leading corporations, innovative medium-sized companies, and disruptive start-ups. MHP provides both operational and strategic consulting and delivers proven IT and technology expertise as well as specific industry know-how.

As OneTeam, MHP operates internationally, with headquarters in Germany and subsidiaries in the US, UK, Romania, and China. For over 26 years, MHP has been shaping the future together with its customers. More than 4,000 MHP employees are united by the aspiration for excellence and sustainable success. This aspiration continues to drive MHP - today and in the future.

The Role

The Junior Information security specialist is responsible for the design, implementation, monitoring and reporting of governance and technical information security controls and measures to reduce risks and protect business value

Responsibilities

The Junior Information Security Specialist will perform any of the following activities depending on business needs:

• Coordinate and perform ISO 27000 process management functions and control testing reporting and activities in accordance with regulatory and departmental policy and procedures.
• Update and maintain control matrices and spreadsheets, and providing recommendations for Information Security Management System.
• Assist in operational and security-related control and risk assessments to ensure compliance to regulatory and statutory requirements, as well as industry specific guidelines, such as PCI DSS, ISO 27000, COBIT and ITIL
• Develop and document security policies and procedures, training and awareness
• Assist and contribute to IT Security Governance meetings and activities
• Ensure business and technical requirements are aligned, security policies and are implemented within an allowed period to meet compliance.
• Develop operational reports and presentations using Excel and Power Point
• Collection and consolidation of evidences to address compliance findings
• Define indicators of performance and quality metrics and ensure compliance with data related policies, standards, roles and responsibilities, and adoption requirements
• Manage and implement configuration changes, monitoring, software updates for client IT Security Infrastructure.
• Analyze, troubleshoot, and remediate issues with various IT security devices.
• Work closely with other IT teams to ensure the availability and security of the client’s enterprise.
• Deliver security solutions supporting the office and production connected systems.
• Auditing deployed solutions, providing recommendations, and ensuring security policies and regulations are followed and adhered to for all implemented systems
• Plan, deploy, harden, maintain, troubleshoot, operate and manage network security solutions such as: Palo Alto, or similar capability, next-generation firewalls (NGFW), Intrusion Detection and Prevention Systems (IDS/IPS), Cloud based security web gateways, Firewall management tools (e.g. FireMon, AlgoSec, Tufin), data loss prevention tools,,ICS and OT system security requirements, honeypots and network sensors.
• Documentation of logical and physical architecture
• Follow all the ITIL processes (incident, problem, change) for all items impacting plant operations.
• Create Application and Hardware (System) Lifecycle Plans
• Work with the ITP management to ensure that a multiyear lifecycle plan is created to support from 1st to 3rd level support including milestones for all known firmware/software versions or functional upgrades and sunset and successor systems.
• Assess and Manage System Requirements and Production program fulfillment
• Work with the ITP department to determine, the current level of performance expected and risk with current process and systems. Create with the business area requirements plans for continuous improvement of the process and systems throughout the plant.
• Identify Automated Solutions which support business process maturity or improvement
• Define maintenance plans for firmware/software upgrades.

Work Schedule:

• This position requires onsite availability in Chattanooga, TN
• Work Hour flexibility required based on Production Schedule

Qualifications:

Education:

• Associates in Computer Science/Info Technology Mgmt, required
• Bachelor in Computer Science/Info Technology Mgmt, preferred

Experience:

• 1 - 3 years of professional work experience in related field.
• Basic Server Architecture Experience; advanced Server Architecture experience, preferred

Preferred Certifications:

• Firewall, IDS, IPS system configuration and management, Next Generation Firewall and Security Solutions like CNA-Security, GICSP, GSEC, Sec CE, CISSP, or SSCP preferred.
• Palo Alto Accredited Configuration Engineer (ACE)

Skills:

• Strong analytical skills.
• Strong written and verbal communication skills.
• Work under pressure
• Ability to work on multiple activities concurrently.
• Strong systemic thinking and problem solving skills.
• Experience in business process definition and validation.
• Strong troubleshooting skills
• Good documentation skills
• Ability to take a “client” focus when engaging with internal departments / customers.
• Strong technical skills.
• Works well as part of a team.
• Strong written and verbal communication skills
• Experience in creating business process and continues process improvement

Specialized Skill:

Required:

• Experience in Information Security Management Frameworks such as ISO 27000, PCI DSS, HIPA, NERC CIP etc.

Preferred:

• CISSP, CRISC, CISN, CISA, and/or GIAC; or comparable certification
• Network Intrusion Prevention
• Advanced Understanding of IP networks
• Firewall Design/Implementation/Maintenance
• Network Architecture and Design
• Configuration management
• System Hardening (Windows, SQL, UNIX, LINUX, NETWORK)

Percentage of required travel: up to 10%

Physical requirements:

• This job operates in an office environment. This role routinely uses standard office equipment such as computers, phones, cameras, photocopiers, and filing cabinets.
• Must be able to lift 15 pounds at times.
• While performing the duties of this job the employee is required to talk, hear, walk, sit, stand, climb stairs on occasion with prolonged periods of sitting at a desk and working on a computer.
• Must be able to effectively work and complete tasks in an open office/noisy environment.
• Must be able to sit for prolonged periods of time while traveling in a car or airplane.

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with MHP Americas, Inc. (i.e., H1-B visa, F-1 visa (OPT), or any other non-immigrant status).

The salary range for this role is $45,000-$55,000. However, it is important to note that at MHP, compensation range is dependent on geographic location. Individual salaries within each range are determined through a wide variety of factors including but not limited to education, experience, knowledge and skillset. MHP reviews compensation regularly and may adjust base salaries to reflect market competitiveness.

In addition to salary, individuals may be eligible for a discretionary performance bonus. Our full suite of benefits includes:

• Paid Vacation
• Paid Holidays
• Paid Sick leave
• 401(k) match
• Medical, dental and vision coverage
• Tuition and certification reimbursement
• Life Insurance
• Short and Long Term Disability Coverage
• Subsidized gym membership program
• Subsidized Porsche and VW leasing programs

Porsche is an equal opportunity employer and we take pride in our diversity. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Porsche will be based on merit, qualifications and abilities. Porsche does not discriminate in employment opportunities or practices on the basis of race, color, religion, sex, pregnancy, status as a parent, national origin, age, disability, family medical history, ancestry, medical condition, genetic information, sexual orientation, gender, gender identity, gender expression, marital status, familial status, registered domestic partner status, family and medical leave status, military status, criminal conviction history, or any other characteristic protected by federal, state or local law.

If you are an applicant from the state of California, please review the California Applicant Privacy Notice here.