Role - Security Engineer
Location - NYC, NY...........ONSITE...............NO OPT/CPT/H1B Visas.............
Skills -
- Bachelor's degree in Computer Science, Information Systems or equivalent work experience
- At least 12+ years of experience in information security
- At least 8+ years in IT infrastructure management, application architecture, risk management, data architecture, middleware technology, and IT operations and project management
- At least 8+ years of experience with networking, load-balancing, DNS, TLS/SSL digital certificates, SAML and Single Sign-on technologies, Kerberos, MFA technologies, and Identity management
- At least 4+ years of experience working in cloud environment (Azure, AWS, GCP)
- At least 4+ years of experience working in securing Internet-facing applications, utilizing WAF technologies (eg: Akamai CDN and WAF, CloudFlare, Azure CDN and WAF, Azure FrontDoor, AWS CloudFront and WAF, and similar reverse-proxy technologies)
- At least 4+ years of experience working with tools and techniques for collecting and processing Network Security Telemetry and Security Event Data.
- At least 4+ years of experience architecting, deploying, and managing endpoint security and EDR technology
- At least 4+ years of experience using scripting languages (Python, Bash, Powershell, etc.)
- At least 4+ years of experience with Windows, Linux, or MacOS administration
- At least 4+ years of experience working with vulnerability management and scanning tools
- At least 4+ years of experience working with application scanning tools
Desirable skills/experience:
- Experience in implementing and operating Network Security Telemetry Collection Systems in multi-cloud and on-prem environments
- Experience in implementing and operating Data Loss Prevention Systems
- Experience of information security principles and practices, especially the implementation of practical technical controls to support organization policy
- Strong understanding of networking protocols, firewalls, and cybersecurity protection concepts, including software development lifecycle, and compensating controls
- Strong understanding of cloud-based services such as O365, AzureAD, IAM, Entra ID
- Strong understanding of CIS controls
- Experience with Syslog-NG, LogScale (Humio) or similar SIEM/log aggregation systems
- Experience with SSO products and services such as Entra ID, PingFederate, or Okta
- Experience with NetSkope, Zscaler, Palo Alto Networks Prisma Access or similar cloud proxies
- Familiarly with CASB/SASE products
- Experience with Cloud-based EDR/XDR tools
- Knowledge of endpoint security management, configuration policies, and procedures
- Experience with asset management and on-prem/cloud-based vulnerability management tools
- Highly flexible/willing to learn new technologies
- Highly organized with excellent analytical, problem solving and decision-making skills
Excellent communication and collaboration skills