We are seeking a talented individual to join our team as an Information Security Engineer. This position will be focused on making security better for ABC products and services. As a member of this team, you will be involved in driving the security strategies across the corporate environment while managing security risks. 

WHAT YOU’LL DO:  

• Develop and implement security technologies, standards, processes, and guidelines for the enterprise 
• Follow standards in accordance with company policies and regulations (ISO 27001, PCI, SOC, etc.) 
• Understands the trade-offs required to manage the different levels of risk tolerance and risk exposure across the organization 
• Bring your ideas forward, evaluating how to optimize the tools we’re using and exploring technologies that could continue to enhance our security posture and ensure solutions scalability 
• Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals 
• Assist/perform deployment/ maintenance and tuning of security systems such as firewalls, IPS/IDS, SIEM, EDR, WAF, threat and vulnerability management tools to reduce false positives and deliver actionable reporting 
• Prepare Security status reports and findings to stakeholders and senior management 
• Design / Review system configurations to ensure that they are secure, role appropriate, and consistent throughout the organization 
• Handle cyber incidents, project deployments and customer escalations complying with standards, regulations, policies, procedures, and work instructions 
• Keep abreast of and gain expertise in the evolving technology and understand how new technologies could be applied to our security environment 

WHAT YOU’LL NEED TO HAVE: 

• Bachelor’s or Master’s degree in an Engineering or Science discipline or 3+ years of working experience in Information Security Domains  
• Solid understanding of information security standards & practices 
• Experience with endpoint security solutions including anti-virus, DLP, encryption, and malware remediation techniques. 
• Solid understanding of IT processes including security, incident management, configuration management, change management, release management, problem management, business continuity, and disaster recovery 
• Experience in a broad range of security controls and risk management frameworks (SOC, ISO 2700x, PCI) 
• Ability to work independently  

AND IT’S GREAT TO HAVE: 

• One or more certificates such as, CISSP, ISSAP, CISM, CRISC, CCPA, CCIE, or equivalent 
• Experience with API scripting or programming (any language) 
• Experience with cloud (preferably Azure) 
• Experience with incident response processes