What are the responsibilities and job description for the CYBERSECURITY ENGINEER position at StateServ?
Essential Functions Note : The essential duties and primary accountabilities below are intended to describe the general content and requirements of this position and are not intended to be an exhaustive statement of duties. Incumbents may perform all or most of the primary accountabilities listed below. Specific tasks, responsibilities or competencies may be documented in the incumbent's performance objectives as outlined by the incumbent's immediate supervisor or manager.
1. Creates solutions for pre-existing security issues to properly address and eliminate existing threats of security breaches and intrusions.
2. Defines, implements, and enforces corporate security policies and best practices.
3. Configures, installs, and maintains security tools to protect information and network infrastructure and computer systems.
4. Promptly responds to and resolves data security crises and network security incidents. Investigates and resolves non-standard security vulnerabilities.
5. Regularly oversees the security of facilities, software, hardware, and user needs.
6. Regularly performs penetration testing to assist in identifying vulnerabilities within the IT infrastructure and to validate the effectiveness of existing security measures.
7. Provides information assurance to help ensure the integrity, availability, authenticity, confidentiality and non-repudiation of information and information systems.
8. Coordinate with compliance resources on HIPAA audit requirements to improve compliance and related risk processes and procedures.
9. Responsible for securing the Microsoft environment and endpoints for all employees including, but not limited to PC's, cellphones, servers, and SaaS products.
10. Creates and maintains IT Security Policies and Procedures as needed.
Marginal or Additional Functions
1. Assist in oversight of Azure / M365 Cloud Administration to include tasks such as creating and managing virtual networks, configuring and monitoring storage accounts, and ensuring security and compliance.
2. Assist with device management (physical and mobile) to ensure devices are secure, up-to-date, and compliant with organizational policies with the goal of protecting the corporate network and data from unauthorized access.
3. Participate in CISA / NIST CVE Reviews and Analysis.
4. Communicates threats and risks to senior leaders and recommends security solutions, as appropriate
Supervisory and Managerial Responsibility
- None
Knowledge, Skills & Abilities
Education, Licensure or Certification :
Work Experience or Related Experience :
Specialized Knowledge, Skills & Abilities :
Equipment :
Travel Requirements and Conditions
Work Environment, Conditions and Demands
Physical Requirements and Demands Note : Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions as described.
